Ed Greshko wrote:
Gene Heskett wrote:
I have a firewall that has so far been bulletproof. Its called dd-wrt, run on
an old scrap x86 box, booting busybox from a cf card, no drives in it & only
2 fans.
I'm not sure why you are comparing the functions of SELinux with the
functions of a firewall. It would be nice to hear your interpretation of
the issues that SELinux targets v.s. what a Firewall targets. If you think
they serve the same functions it would be nice if you would cite your source.
Umm, I think they have very little in common, myself, except
in some sort of vague overall "enhanced security" sense.
The firewall intends to prevent compromise.
SELinux intends to mitigate damage on a compromised machine.
Note that I speak of intent, not what is accomplished.
Mike
--
p="p=%c%s%c;main(){printf(p,34,p,34);}";main(){printf(p,34,p,34);}
Oppose globalization and One World Governments like the UN.
This message made from 100% recycled bits.
You have found the bank of Larn.
I can explain it for you, but I can't understand it for you.
I speak only for myself, and I am unanimous in that!