Crispin Cowan wrote:
Németh Tamás wrote:
Yes, it seems to me, that Fedora is more security-oriented than the SuSE family, but SuSE is close. Beside this, the criticized AppArmor may be a better choise for simple minded IT administrators (like me) than SELinux.
That's one way to put it.
Another way to put it is that there are only 2 kinds of Fedora users:
* those that run the system as configured out of the box, no changes, no new applications * those that have disabled SELinux
AppArmor is for more than simple minded IT administrators like you :-) it is for administrators who don't have time to be a full-time SELinux admin, because they have something else to do.
This is self-serving crap. I have no direct training in SELinux, but I have administered Fedora boxes and modified the security policy for new apps with no more help than a few Google searches. You see, SELinux is open source software, just like AppArmor, and there is plenty of help out there if you need it.
I argue that openSUSE machines with AppArmor enabled are considerably more secure than Fedora machines with SELinux disabled.
You're not arguing it, you are stating it. And it's a specious statement in any case. There is no need to disable SELinux. You've given me yet another reason to dump openSUSE. Arrogance bred from self-assurance is no way to be secure. Adios, Lee Brotzman --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org