[Linux-aus] Fwd: Gafar Lawal, director of architecture, demonstrates his ignorance of architecture
Chris Samuel
chris at csamuel.org
Mon Jun 16 07:57:02 UTC 2003
-----BEGIN PGP SIGNED MESSAGE-----
On Sunday 15 Jun 2003 12:51 am, Leon Brooks wrote:
> Capabilities, chrooting, chattr and so on within a single OS image.
Not to mention SELinux from NSA, for which there are already people working on
integrating it with Debian [1] (kudos to Brian May & Russel Coker) and for
Gentoo [2] (kudos to the Hardened Gentoo crowd).
[1] - http://www.coker.com.au/selinux/
[2] - http://www.gentoo.org/proj/en/hardened/
Both sets have demo systems on the internet that you can get a root login on,
details are at:
http://www.coker.com.au/selinux/play.html
http://selinux.dev.gentoo.org/
As an aside, I've never been particularly impressed with the Linux chattr
system implementation where root can unset the flags when the system is
multiuser, I prefer the *BSD system of only permitting alterations from
single user mode. One day I may look at fixing that. :-)
Of course, I'm happy to be corrected if it's been fixed since I last looked!
cheers,
Chris
- --
Chris Samuel : http://csamuel.org/ : Melbourne, VIC
Need someone with 10 years of Linux, Unix, Networking
& IT Security skills in Melbourne, VIC ? Email me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iQEVAwUBPu0Ga41yjaOTJg85AQGNBwf5AU//VMYZQiXPsPfWvjUoh4rifAZCZ5ue
VYAsG5a/iGsy96eYC8N0AOHrLtEoRMhJ2hlqQl1boHgpPtJE8xI8k3tyZGJx0S3c
KgWgjRnGKYL989P2OGzx0nFuIBeY+9sC3TD7SbiLqwUNZsCBfGusBz28VfBmQgFS
Eux1QDsSaidO1w70r2bmyagSwopJqC5G+ER1INstHMMM6Celpiy0LOrHoXdxrL69
3lRQAoP4k7M4wAWp8anbjXb8MZbl1hCiB/Ofhp7lT/ZZS/irfSq6mMhgTsdaJfQd
9jHhy4a+jLHSTY/yFaNw2kzLI1HTyy1D7hqwL0QlxAgJAygKaoKdrw==
=T8cZ
-----END PGP SIGNATURE-----
More information about the linux-aus
mailing list