August 21st, 2003 12:18 PM
Security Enhanced Linux
Anybody please give me some useful material about security enhanced linux. I searched through google, but haven't got much useful content. Also , i have a very very slow connection to the net and access time is limited. plz help me
August 21st, 2003 12:42 PM
I think that http://www.antionline.com/showthread...hreadid=239629 will answer your question to that.
//Offtopic -I wish i could say 'use the AO search feature', but it seems to SUCK REAL BAD. The advanced search feature is so screwed lately. It took me 30 minutes to find my own post using the AO search feature. Will someone do something about this!!\\
Ubuntu-: Means in African : "Im too dumb to use Slackware"
August 30th, 2003 10:57 PM
It should be noted that SE-Linux != random hardened Linux distro. SE-Linux is architectually different, the fact that the NSA chose such a generic name as "Security Enhanced Linux" only tends to complicate the issue. Unlike most "secure" Linuxes, SE-Linux adds mandatory access controls, role-based access controls, segregation of administrators and operators as well as several other core changes.
SE-Linux is not considered a complete product so it is not recommended for use in a production environment, if you wish to use a Linux that is appropriate for secure, multilevel production environments try Argus' Pitbull LX. Although this still is only a B1 equiv system, and of course B1 is not recommended in secure multilevel production environments either... it is the best of many bad choices.
SE-Linux _may_ in the future find itself to be a genuine player in the high secure OS market as it has been taken on by Secure Computing, the same people who provide the Sidewinder firewall which is based of of the same OS (LOCK) that the SMG system is based off of as one of only a handful of systems to formally target the TCSEC A1 specification, so needless to say it is in good hands, however by the time they do anything good with it, it will no longer be Linux because monolithic kernels have no place in the world of trusted computing.
But I digress
Further SE-Linux resources: