• 1

not selinux

(Anonymous)
thats the pax/exec shield feature (which is usually used as the same time as selinux but also other solutions like grsec, rsbac, etc..)

Re: not selinux

(Anonymous)
In reply to the anonymous poster above, the execmem, execheap, and execstack perms are not the same as the pax/execshield.... plenty of information available via Google regarding the difference between the two.

Thanks for directing me to that list. I see my Linux Journal article on Mambo on the list.

Thanks for directing me to that list. I see my Linux Journal article on Mambo on the list.

Hi Dan!

For prevent Buffer Overflow, SELinux can do this in automatic mode? or maybe we need to understand which argument we can use when we write a policy??

because, if i write a policy for an application that is not confined by default, and (logically) i want prevent Buffer Overflow for this specific application, i need to know "which" key rules to insert in my policy? or SELinux prevent automatically?

I think to be clear.

Thanks in advance,

Bye,

  • 1
?

Log in