OSNews

> and is MUCH MUCH MUCH more easy to use.

I really don't care.
I use Fedora, SeLinux is enabled and I don't touch SeLinux policy. My OS should be secure, I don't have to make it secure.
If i manually install a program and it trigger SeLinux policy, then I remove this program because this program should have security flaw. Period.
This only appened one time. Many many many programs work out of the box with SeLinux enabled. Some not but they are a very few number.

While I agree that Apparmor is easy to to use and configure, there are a number of (in my opinion valid) critisisms leveled against it. On the whole it is not as solid a sollution as SELinux.

Personally I don't currently need the sort of security that SELinux offers, and as such I'm quite happy doing things the 'old' way (I run OpenBSD and Debian on a couple of servers). However if I needed the type of features SELinux offered then I would take the time to learn SELinux and do it right. AppArmor seems to fill some kind of in between niche that no one really needs.

Apparently Ubuntu's next release, Gutsy Gibbon, is going to use Apparmor as well.

It's my understanding that apparmor is going to be implemented in the upcoming Ubuntu release:

https://wiki.ubuntu.com/AppArmor

But yes, I tip my hat to SUSE for being the first to do this.

Novell brought AppArmor off another company so it takes the shine off it somewhat, it's not like it's there innovation.

Maybe Novell couldn't be arsed to setup selinux and try something of their own, reminds me of another company.