Hello all, I am looking for comments on my first set of packages in preparation for finding a sponsor. Package name : enforcer Version : 0.4 alpha Upstream Author : Omen Wild <Omen.Wild@Alum.Dartmouth.ORG> URL : http://enforcer.sourceforge.net License : GPL Description : provides runtime file system integrity protection The Enforcer is a Linux Security Module designed to improve integrity of a computer running Linux by ensuring no tampering of the file system. It can interact with TCPA hardware to provide higher levels of assurance for software and sensitive data. . It can check, as every file is opened, if the file has been changed, and take an admin specified action when it detects tampering. The actions can be any combination of log the error, deny access to the file, panic the system, or several operations that work with the TPM. . The Enforcer can also work with the TPM to store the secret to an encrypted loopback file system, and unmount this file system when a tampered file is detected. The secret will not be accessible to mount the loopback file system until the machine has been rebooted with untampered files. This allows sensitive data to be protected from an attacker. . The Enforcer can also bind specific files so that only specific applications can access them (for example, only apache is allowed to access apache's secret ssl key). This means that even if someone compromises your system, the attacker will not be able to steal critical files. . Finally, the Enforcer can make sure that no files added to directories after its database is built are allowed to be accessed. . http://enforcer.sourceforge.net/ Package name : tpm Version : 1.1b Upstream Author : IBM Watson Research <gsal@watson.ibm.com> URL : http://www.research.ibm.com/gsal/tcpa/ License : GPL/BSD Description : the IBM TCPA library This package contains IBM's TCPA library. It provides support for TCPA version 1.1b hardware on IBM computers. All packages and source available through apt: deb http://descolada.dartmouth.edu/debian/ unstable main deb-src http://descolada.dartmouth.edu/debian/ unstable main There are actually four packages there, two in the Enforcer (enforcer, kernel-patch-enforcer) and two for the tpm library (libtcpa-dev, libtcpa1.1b). All packages are lintian clean (except for some deliberate overrides). My public key is 0xFBB05BB8 and can be found on the wwwkeys.pgp.net key servers, but has not been signed by a Debian developer. Thanks, Omen -- Diplomacy - the art of letting someone have your way.
Attachment:
pgpuJP5ONt5ij.pgp
Description: PGP signature