RE: Security-Enhanced Linux in Debian?
The source's reliance on RedHat versions has been discussed on the SELinux
mailing list. It is *not* limited to RedHat sources. It's distribution
independent. If by mistake there is something in there making it not so,
the team at the NSA has expressed a willingness to remove that dependency.
As far as it being useful right now. The NSA team is looking at this as a
"proof of concept" type project and not aiming for a full-time production
system implementation. They currently only work with 2.2 since their "new
guy" said it would be a large amount of work to port to 2.4-whenever.
The SELinux system could easily be provided as a patch.deb and utils.deb for
inclusion in the Debian system.
-Nathan Dabney
smurf@sginet.com (preferred)
-----Original Message-----
From: Javier Fernandez-Sanguino Peña [mailto:jfernandez@sgi.es]
Sent: Tuesday, January 02, 2001 9:21 AM
I have gone through http://www.nsa.gov/selinux/ (Security-Enhanced
Linux) and
it seems to be some interesting work on how Linux security can be overall
improved, I've found with distress, however that the patches applied seem to
be
from RedHat versions (not original source).
Before starting to do my own work with it, however, I would like to
know if
other Debian people have heard of the project and what do they think of it.
Could be used for Debian?
They seem to be working on auditing the source of what we could
consider our
"base-filesystem" so the kind of code-auditing that was proposed in the list
earlier could start here.
Regards
Javi
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact
listmaster@lists.debian.org
Reply to: