Ask Your Question
1

Why Fedora don't use GrSecurity+SElinux?

asked 2017-03-06 16:23:00 -0500

sneker gravatar image

Hi partners!

My question in this day is:

Why Fedora don't use GrSecurity and PaiX with Selinux for better protection? I may be wrong, but both are compatible with each other, and could provide an even more robust security model to the system by default.

The GrSecurity/PaiX protects against memory corruption attacks and ZeroDay exploits without compromising usability of the system.

Thanks for attention! o/

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
2

answered 2017-03-06 18:00:11 -0500

fcomida gravatar image

AFAIK GrSecurity has never been accepted in the mainline kernel and fedora prefers to stay as closer to upstream as possible.

edit flag offensive delete link more

Comments

Thanks for the reply!

I asked because I think the GrSecurity a very interesting application, but understand that the Fedora project prefers to remain closer to the main kernel. SElinux has also provides a substantial security to the system.

A precompiled version in the repositories would not be an attractive option? I say this because with frequent updates of the kernel is practically impossible to compile so many times the kernel.

sneker gravatar imagesneker ( 2017-03-08 00:59:34 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2017-03-06 16:23:00 -0500

Seen: 435 times

Last updated: Mar 06 '17