undefined | Better HN

0 pointsthrownaway242411y ago0 comments

What kind of monitoring would you deploy that would raise an alert for a process opening and reading readable files?

0 comments

SELinux. This kind of stuff would be where it really shines. A correctly configured installation would block and report access to files the application is not supposed to access. Maintaining it, especially for individual applications, is work, but it seems to me that on the scale of Google it may well be worthwhile.

j / k navigate · click thread line to collapse

0 pointsthrownaway242411y ago0 comments

What kind of monitoring would you deploy that would raise an alert for a process opening and reading readable files?

0 comments

anonymouz11y ago

j / k navigate · click thread line to collapse