Would generation of SELinux policies be a good use case for LLMs? "Generate a SE... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

rmholt 5 months ago | parent | context | favorite | on: The Insecurity of Debian

Would generation of SELinux policies be a good use case for LLMs?

"Generate a SELinux policy for daemon X. This daemon accesses it's config file in /etc and it's runtime data in /var/x. It listens on network. All other activities should be disabled"

layer8 5 months ago | [–]

Only if you’re knowledgeable enough to double-check the resulting configuration and correct any mistakes or omissions.

kelnos 5 months ago | [–]

While I agree the syntax of the policy is a big part of the difficulty, I think it's equally difficult for many apps/services to find out what activities it needs.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact