#StackBounty: #selinux #apparmor #lsm Are LSM tools such as AppArmor and SELinux considered IDS/IPS?

Bounty: 100

I know this is kind of an odd question. An IDS/IPS basically autonomously recognizes and optionally prevents intrusions.

And while SELinux and AppArmor seem to be trying to do the same, they are never labelled as an IDS/IPS. Am I missing something? This is a purely academic question.

Would such tool be considered Host Based IDS/IPS?


Get this bounty!!!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.