🍗 Wiki

Linux Security Modules

Linux Security Modules

1. Which kind of LSM is running in my system?

Run /sys/kernel/security/lsm if possible. If not, see documents below.

2. Cap, Capabilities

Capability is a method to fine-tune privileges of root processes.

See more at Capabilities

3. SELinux (Security Enhanced Linux)

SELinux was merged into the mainline Linux kernel 2.6.0-test3, released on 8 August 2003.

See more at SELinux

4. Smack

Smack was officially merged into the Linux kernel 2.6.25, released on April 2008.

See more at Smack

5. AppArmor

AppArmor was merged into the Linux kernel 2.6.36, release on October 2010.

See more at AppArmor