Linux Security Protection System Released
1 - 2 min read
Oct 16, 2002
LinSec team is proud to announce the first stable release of LinSec. LinSec, as the name says, is Linux Security Protection System. The main aim of LinSec is to introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism).
Date: Wed, 16 Oct 2002 18:37:13 +0200 (CEST)
From: Bosko Radivojevic
To: bugtraq@securityfocus.com
Subject: Linux Security Protection System
LinSec team is proud to announce the first stable release of LinSec.
LinSec, as the name says, is Linux Security Protection System. The main aim of LinSec is to introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism). LinSec model is based on:
- Capabilities
- Filesystem Access Domains
- IP Labeling Lists
- Socket Access Control
Filesystem Access Domain subsystem allows restriction of accessible filesystem parts for both individual users and programs. Now you can restrict user activities to only its home, mailbox etc. Filesystem Access Domains works on device, dir and individual file granularity.
IP Labeling lists enable restriction on allowed network connections on per program basis. From now on, you may configure your policy so that no one except your favorite MTA can connect to remote port 25
Socket Access Control model enables fine grained socket access control by associating, with each socket, a set of capabilities required for a local process to connect to the socket.
LinSec consists of two parts: kernel patch (currently for 2.4.18) and userspace tools.
Detailed documentation, download & mailing list information -
Related Articles
1 - 0 min read
Tails 6.2 Improves Security, Expands Multilingual Support
1 - 0 min read
CISA's Leads Promising New 'Secure By Design' Initiative
1 - 0 min read
AlmaLinux 9.4 Reinforces Robust Linux Security
