[Linux-aus] Fwd: Gafar Lawal, director of architecture, demonstrates his ignorance of architecture

Chris Samuel chris at csamuel.org
Mon Jun 16 07:57:02 UTC 2003


-----BEGIN PGP SIGNED MESSAGE-----

On Sunday 15 Jun 2003 12:51 am, Leon Brooks wrote:

> Capabilities, chrooting, chattr and so on within a single OS image.

Not to mention SELinux from NSA, for which there are already people working on
integrating it with Debian [1] (kudos to Brian May & Russel Coker) and for
Gentoo [2] (kudos to the Hardened Gentoo crowd).

[1] - http://www.coker.com.au/selinux/
[2] - http://www.gentoo.org/proj/en/hardened/

Both sets have demo systems on the internet that you can get a root login on,
details are at:

	http://www.coker.com.au/selinux/play.html
	http://selinux.dev.gentoo.org/

As an aside, I've never been particularly impressed with the Linux chattr
system implementation where root can unset the flags when the system is
multiuser, I prefer the *BSD system of only permitting alterations from
single user mode. One day I may look at fixing that. :-)

Of course, I'm happy to be corrected if it's been fixed since I last looked!

cheers,
Chris
- --
 Chris Samuel  :  http://csamuel.org/  :  Melbourne, VIC

 Need someone with 10 years of Linux, Unix, Networking
   & IT Security skills in Melbourne, VIC ? Email me.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iQEVAwUBPu0Ga41yjaOTJg85AQGNBwf5AU//VMYZQiXPsPfWvjUoh4rifAZCZ5ue
VYAsG5a/iGsy96eYC8N0AOHrLtEoRMhJ2hlqQl1boHgpPtJE8xI8k3tyZGJx0S3c
KgWgjRnGKYL989P2OGzx0nFuIBeY+9sC3TD7SbiLqwUNZsCBfGusBz28VfBmQgFS
Eux1QDsSaidO1w70r2bmyagSwopJqC5G+ER1INstHMMM6Celpiy0LOrHoXdxrL69
3lRQAoP4k7M4wAWp8anbjXb8MZbl1hCiB/Ofhp7lT/ZZS/irfSq6mMhgTsdaJfQd
9jHhy4a+jLHSTY/yFaNw2kzLI1HTyy1D7hqwL0QlxAgJAygKaoKdrw==
=T8cZ
-----END PGP SIGNATURE-----




More information about the linux-aus mailing list