Simplified Mandatory Access Control Kernel (SMACK) provides a complete Linux kernel based mechanism for protecting processes and data from inappropriate manipulation. Smack uses process, file, and network labels combined with an easy to understand and manipulate way to identify the kind of accesses that should be allowed.
There are two obvious use cases to be considered, Desktop and Server.
There may also be a third use case as a firewall ?
There are multiple strategies for user and process separation.
This is intended for public debate on what works and what is needed.
References:
http://
http://
https:/
https:/
View full history Series and milestones
trunk series is the current focus of development.
All bugs Latest bugs reported
All blueprints Latest blueprints
-
SMACK Network usage - Default Configuration
Registered -
Smack Firewall usage - Default Configuration
Registered -
Smack Server usage - Default Configuration
Registered -
Smack Desktop usage - Default Configuration
Registered