You are not logged in.

#1 2013-10-23 08:28:32

Registered: 2013-06-04
Posts: 28

Does MAC protect Linux from being hacked via network?


Sorry for the perhaps implicit title, the words count is limited.

So um what I mean is,
if I have MAC(Mandatory Access Control) system deployed and limiting certain softwares(web browsers, server daemon, etc),
and someone is trying to hack into the OS via network, can the MAC system limit the damage done by exploits of those softwares as well?
Like if the software is hacked successfully, can the hacker still access resources which is not whitelisted by the MAC system?

I hope that's the correct phrasing, pardon me if it's the otherwise.

Thank you for your time.


#2 2013-10-24 00:50:10

From: Nanaimo, BC, Canada
Registered: 2012-05-09
Posts: 831

Re: Does MAC protect Linux from being hacked via network?

in theory, so long as there are no issues with the configuration or the MAC controller itself. the biggest problem with MAC is setup, since it uses a whitelist and not a blacklist.

I would look at the simpler systems, then cgroups, before looking into MAC

the main take away is that your system will still be compromised, and depending on the system that they gain access to, MACs may or may not offer any benefit, but do offer a world of headache

Last edited by HiImTye (2013-10-24 00:51:40)


#3 2013-10-24 04:19:20

Forum Moderator
Registered: 2007-09-28
Posts: 5,414

Re: Does MAC protect Linux from being hacked via network?

Moving to Networking, Server and Protection


Board footer

Powered by FluxBB