Re: Does Debian need to enforce a better Security policy for packages?

To: Patrice Neff <mailinglists@patrice.ch>
Cc: Michael Robinson <robinson@netrinsics.com>, debian-security@lists.debian.org
Subject: Re: Does Debian need to enforce a better Security policy for packages?
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Thu, 25 Oct 2001 13:52:01 +0200
Message-id: <20011025135201.A4366@dat.etsit.upm.es>
In-reply-to: <gnus-user.87pu7cn67q.fsf@usenet.patrice.ch>
References: <20011022184619.A8341@dat.etsit.upm.es> <20011022213138.H1337@salem.getuid.de> <20011023011714.A19676@dat.etsit.upm.es> <20011023095504.J1337@salem.getuid.de> <20011023222802.A1984@netrinsics.com> <gnus-user.87pu7cn67q.fsf@usenet.patrice.ch>

On Wed, Oct 24, 2001 at 10:17:13PM +0200, Patrice Neff wrote:
> 
> I believe this would not be reasonable for the Debian distribution,
> but you could create a customized and secure Debian version where you
> do a source code audit before accepting any package. Or maybe it could
> be done with another APT tree?
> 
> well, just my 2 cents
> patrice
> 
	Many operating systems have a "limited" version which is
considered more secure and is targeted towards certification. Take, for
exmaple, Trusted Solaris...

	Regards

	Javi

Reply to:

References:
- Does Debian need to enforce a better Security policy for packages?
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>
- Re: Does Debian need to enforce a better Security policy for packages?
  - From: Christian Kurz <shorty@debian.org>
- Re: Does Debian need to enforce a better Security policy for packages?
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>
- Re: Does Debian need to enforce a better Security policy for packages?
  - From: Christian Kurz <shorty@debian.org>
- Re: Does Debian need to enforce a better Security policy for packages?
  - From: Michael Robinson <robinson@netrinsics.com>
- Re: Does Debian need to enforce a better Security policy for packages?
  - From: Patrice Neff <mailinglists@patrice.ch>

Prev by Date: Re: qmail ERR- authorization
Next by Date: Re: Does Debian need to enforce a better Security policy for packages?
Previous by thread: Re: Does Debian need to enforce a better Security policy for packages?
Next by thread: Re: Does Debian need to enforce a better Security policy for packages?
Index(es):
- Date
- Thread