Hello, I installed linux-grsec and paxd on my Arch desktop and I'd like to set up a MAC. I tried RBAC but it seemed to complicated and lockdown for me. I read that Tomoyo is enabled by default, but I wasn't able to find many profiles for it on the internet and I don't want to write all profiles on my own... So I think that AppArmor would be the best solution for me since there are many available profiles. From what I read that would mean compiling a custom kernel. Unfortunately my experience with such things equals to zero and I've no idea how to configure grsecurity, I read that few options can even break X. Therefore I come here asking for help. I'm not asking anyone to compile the kernel for me or such thing. Just if you could point me to some resources or tell me which grsecurity options to enable/disable, I'd really appreciate it. Thanks for your time.