:: Re: [DNG] Apparmor Excalibur issues
Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
Mtito at <-
MKevin Chadwick at ->
Delete this message
Reply to this message
Author: Didier Kryn
Date:  
To: dng
Subject: Re: [DNG] Apparmor Excalibur issues
Le 25/02/2026 à 13:49, tito via Dng a écrit :
> Quis custodiet ipsos custodes

    Ha ha! It's the other way round (~:  Here, the guardian isn't
supposed to protect the guarded, but, instead, it protects the system
against the guarded, and on request from the guarded itself, which was
unusual to the Romans. Nowadays there is an agreement on the necessity
of procedures: do-lists, check-lists, safety-belts, ABS, separation of
powers, quorums... in all systems, not only the /operating/ system (~:

    But, maybe what you understate is that implementing these
mechanisms increases the complexity of the program, hence the
possibility of bug or exploit. It means you may loose through the window
the security you gain through the door. I can only agree. The benefit
depends on the complexity of the program.

--     Didier

This message was posted to the following mailing lists:
dng
Mailing List Info | Nearby Messages		<-Re: [DNG] Apparmor Excalibur issues[DNG] KaOS to plan to drop systemd->

Donate to Dyne.org

dyne.org open discussions
administrated by dyne.org hackers		Lurker (version 2.3)