How can I get my gnome lockscreen as default instead of the grey system one? [migrated]

Suddenly my lockscreen changed from the gnome (blue one) lockscreen that detects the username and asks for password to the login screen that asks for both username and password. I am trying to get it back, but nothing is working.

I found… Continue reading How can I get my gnome lockscreen as default instead of the grey system one? [migrated]

Linux whitelist-based Mandatory Access Control instead of a blacklist-based model

I’m trying to harden a Linux installation on a personal computer – I decided to try both SELinux and AppArmor as a Mandatory Access Control (MAC) to supplement the default Discretionary Access Control (DAC) that Linux comes with by default… Continue reading Linux whitelist-based Mandatory Access Control instead of a blacklist-based model

Is there a good reason (and what can it be) to require DAC restriction on IPC in addition to SELinux rules?

Our company is developing an AOSP-based platform for our customer. Some of our vendor services are using HWBinder for IPC which is using SELinux to restrict service discovery and access. The problem is that our customer insists that SELinu… Continue reading Is there a good reason (and what can it be) to require DAC restriction on IPC in addition to SELinux rules?

Restrict privileged users from accessing certain directories on Linux servers with Grsecurity?

My question is similar to these:

Protect sensitive data from sysadmin prying eyes
Restrict access to a specific directory on Linux

From those, I understand that SELinux could accomplish my goal. But we do not have the r… Continue reading Restrict privileged users from accessing certain directories on Linux servers with Grsecurity?

Android exploited – elevated privileges – SE Policy exploit – system as root – dual boot – living in my ramdisk. What now? [on hold]

Ive been chipping away at this for days and going in circles so I need to put this out there – somewhere.

My Samsung s9+ hasnt been acting properly for a long time – but in the past few weeks this thing has become a nightma… Continue reading Android exploited – elevated privileges – SE Policy exploit – system as root – dual boot – living in my ramdisk. What now? [on hold]