SELinux Integrated Logging Tool

[Brandon Pollet <brandon@xxxxxxxxxx>]

After releasing information about my Dynamic Policy Enforcement  
system last week, I wanted to share some of the other projects that  
we have developed at the University of Tulsa over the last year.

This project was developed by Nicholas Davis and it is titled  
"Improving the Logging Facility in Security Enhanced Linux." The  
abstract for this paper and a link to a PDF version of it appear  
below. Please post any feedback or questions you may have. Thank you

Abstract

Security-Enhanced Linux offers a robust Mandatory Access Control  
protection scheme
that enhances standard Unix-based permissions, and allows for greater  
overall system
security. While a wide array of configuration tools are currently  
available, system
administration of SELinux is still cumbersome. One strategic area of  
improvement is
kernel event logging, specifically for Security-Enhanced Linux  
generated events. This
thesis describes SILT, a tool designed to enhance SELinux logging. A  
flexible interface
supports command-line and graphical logging configuration. Backend  
scripts tune the
logging facility, according to user direction. SILT provides a  
convenient mechanism
for administrators to manage logging events effectively, allowing for  
improved system
maintenance.

Link

http://personal.utulsa.edu/~brandon-pollet/SILT-Davis.pdf


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.