2005 LinuxQuestions.org Members Choice AwardsThis forum is for the 2005 LinuxQuestions.org Members Choice Awards.
You can now vote for your favorite products of 2005. This is your chance to be heard! Voting ends March 6th.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Distribution: Slackware, Fedora Core, Red Hat Enterprise
Originally Posted by glebovitz
While all of these apps serve different purposes, SELinux has done the most for me. Labeling and kernel based policy enforcement does a great job of partitioning security. I got tired of running "jails" for each service.
I agree, and I dont consider SELinux an app. Its by far the most complex technology on the list which enhances the kernel to a higher security level. Check the "Orange Book"http://www.radium.ncsc.mil/tpep/libr...00.28-STD.html, SELinux (Mandatory Access Control level) makes Linux (if well configured) far more secure than any other Windows (Discretionary Access Control) or even UNix.
I must say IPCop is badly broken / sucks. Back orifice, trace route and many other things slip past. Port scans are never logged. I can not say enoff bad things about this firewall. Run firestarter or any other firewall behind IPCop to see just how bad it is.