Firejail is a SUID security sandbox program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf.
+4
SELinux Alternatives
SELinux is described as 'Security Enhanced Linux (SELinux) is a role-based access control solution, developed by the US spying agency NSA and Red Hat, for internal and general use' and is an app in the security & privacy category. There are five alternatives to SELinux for Linux. The best SELinux alternative is Firejail, which is both free and Open Source. Other great apps like SELinux are AppArmor, grsecurity, TOMOYO Linux and Smack.
Alternatives list
21 Firejail alternatives
A Mandatory Access Control (MAC) system which is a kernel (LSM) enhancement to confine programs to a limited set of resources.
Cost / License
- Free
- Open Source
Platforms
- Linux
Comments about AppArmor as an Alternative to SELinux
- AppArmor is Free and Open Source
Grsecurity® is an extensive security enhancement to the Linux kernel that defends against a wide range of security threats through intelligent access control, memory corruption-based exploit prevention, and a host of other system hardening that generally require no...
Cost / License
- Paid
- Proprietary
Platforms
- Linux
TOMOYO Linux is a Mandatory Access Control (MAC) implementation for Linux that can be used to increase the security of a system, while also being useful purely as a system analysis tool.
Cost / License
- Free
- Open Source (GPL-2.0)
Platforms
- Linux
Germany
EU
United States
Japan
AppArmor is easier to administer, but isn't a 1:1 replacement. MAC and RBAC are not synonymous. Additionally, AppArmor does not include security information for each data object based on what it is, but is based on directory structures or where things are. They are different approaches to a similar problem with different use cases.