Re: Updated SELinux Release

To: Colin Walters <walters@verbum.org>
Cc: Luke Kenneth Casson Leighton <lkcl@lkcl.net>, Manoj Srivastava <manoj.srivastava@stdc.com>, selinux@tycho.nsa.gov, debian-devel@lists.debian.org
Subject: Re: Updated SELinux Release
From: Stephen Smalley <sds@epoch.ncsc.mil>
Date: Fri, 05 Nov 2004 07:29:18 -0500
Message-id: <[🔎] 1099657758.6373.8.camel@moss-spartans.epoch.ncsc.mil>
In-reply-to: <[🔎] 1099627566.25416.6.camel@nexus.verbum.private>
References: <1099496380.1213.111.camel@moss-spartans.epoch.ncsc.mil> <Pine.LNX.4.58.0411031908500.12297@d10systems.homelinux.com> <1099534538.3875.6.camel@nexus.verbum.private> <87k6t2qepg.fsf@glaurung.internal.golden-gryphon.com> <[🔎] 20041104131544.GC5461@lkcl.net> <[🔎] 1099627566.25416.6.camel@nexus.verbum.private>

On Thu, 2004-11-04 at 23:06, Colin Walters wrote:
> Why don't we just run say EROS (http://www.eros-
> os.org/) instead?  A: Because what makes SELinux interesting is that it
> can run all of our legacy software.  By not shipping it on everywhere,
> we're not tapping that ability.

Some of us might argue that the EROS security model is inadequate...
See DTMach/DTOS/Flask papers and reports for discussion of why
capability-based models leave something to be desired.

-- 
Stephen Smalley <sds@epoch.ncsc.mil>
National Security Agency

Reply to:

References:
- Re: Updated SELinux Release
  - From: Luke Kenneth Casson Leighton <lkcl@lkcl.net>
- Re: Updated SELinux Release
  - From: Colin Walters <walters@verbum.org>

Prev by Date: Re: Updated SELinux Release
Next by Date: a 'main' package from a non-free source
Previous by thread: Re: Updated SELinux Release
Next by thread: Re: Updated SELinux Release
Index(es):
- Date
- Thread