Is capabilities available now?
Chris Wright
chrisw at osdl.org
Thu Feb 12 20:06:33 GMT 2004
* traverser at vip.sina.com (traverser at vip.sina.com) wrote:
> Hi everyone!
>
> I'm new to freebsd and I am very interested in the security
> enhancement of freebsd. I've read some docs about TrustedBSD. I
> still have some questions:
> (1) What is the MAC framework? Is it something like Linux Security
> Modules( LSM framwork )?
Yes, it is similar.
> (2) If the anwser for the above question is 'yes', then why do you
> use this name for the framework ? --MAC, Mandotary Access Control? This
> is just a security module in LSM framework.
The LSM framework is really closer to a MAC framework, as it's primary
goal is to support access control models.
> (3) I'm especially interested in capabilities. Is capabilities function now available in MAC framework? If yes, where and how can I get the source code of it?
There is/was a trustedbsd-cap branch with the capabilities code in it.
I believe the trustedbsd-sebsd (port of selinux) branch also has
capabilities in it. AFAIK, it's not in FreeBSD-current yet...
thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message
More information about the trustedbsd-discuss
mailing list