On Wed, 2007-10-31 at 08:05 -0700, Karsten Wade wrote:
On Wed, 2007-10-24 at 15:38 -0700, Toshio Kuratomi wrote:
> >
> It looks like the combination of SELinux and mod_security will cover the
> range of exploits as long as we have policy that covers all the
> approaches in both SELinux and mod_security.
One thing Fedora has is expertise in writing SELinux policy. A working
SELinux policy would be a good contribution to an upstream.
SELinux can't help with XSS attacks.
--
Ignacio Vazquez-Abrams <ivazqueznet(a)gmail.com>
PLEASE don't CC me; I'm already subscribed