Re: [fw-wiz] Proxy and Stateful together ??
From: Bennett Todd (bet@rahul.net)
Date: 11/18/02
- Next message: Ofir Arkin: "RE: [fw-wiz] segmentation of DMZs"
- Previous message: Bennett Todd: "Re: [fw-wiz] Proxy and Stateful together ??"
- In reply to: Paul D. Robertson: "Re: [fw-wiz] Proxy and Stateful together ??"
- Next in thread: Crispin Cowan: "Re: [fw-wiz] Proxy and Stateful together ??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Bennett Todd <bet@rahul.net> To: "Paul D. Robertson" <proberts@patriot.net> Date: Mon Nov 18 10:19:15 2002
2002-11-16-11:05:40 Paul D. Robertson:
> I'm curious about why you'd chose SELinux over RSBAC given several things:
> [ good points here ]
> Would you mind sharing your rationale?
Rationale? Rationale? I don't have any rationale. I've never
actually used either, yet. I read about RSBAC some time back --- I
do believe it was following up another pointer from you, as a matter
of fact. Immediate reaction was "cool! Just what I'd want, if I
needed to implement a sandbox!". Then I forgot about it. More
recently I started hearing about selinux, started following its
mailing list, and have been keenly interested in developments as it
advances.
No rationale or justification for choosing SELinux over RSBAC;
indeed, now that you've reminded me of RSBAC's existence, I'd
recommend it over selinux for this job, for all the good reasons you
cited.
-Bennett
- application/pgp-signature attachment: stored
- Next message: Ofir Arkin: "RE: [fw-wiz] segmentation of DMZs"
- Previous message: Bennett Todd: "Re: [fw-wiz] Proxy and Stateful together ??"
- In reply to: Paul D. Robertson: "Re: [fw-wiz] Proxy and Stateful together ??"
- Next in thread: Crispin Cowan: "Re: [fw-wiz] Proxy and Stateful together ??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
