Thought I might post some information about this in case some people are interested in trying out SELinux but don't have an extra machine to try it on.
Not too long ago, Gentoo started an umbrella project called "Hardened Gentoo". They are currently working on things like SELinux, Propolice, and Grsecurity. Once they have these systems stable and secure and make up some good default policies, they are brought to Gentoo proper for everyone to use. You can check out http://www.gentoo.org/proj/en/hardened/ for more details on that. Now, on to my point :) That was just some background information for you. If you are interested in getting into SELinux but don't know where to start or you would like to see it in action, you might want to check out http://selinux.dev.gentoo.org/ They have a demo SELinux Gentoo box up that you can log into as root and check out the system or even try to gain higher access on it. You might ask how you gain higher access then root. Well in many of these security projects, one of the main issues is that you don't and can't trust root. The kernel and other security measures need to be able to limit what even the root user can do to the system by use of ACLs or whatever other mechanism you have in place. Enjoy :) Cheers, -- Trevor Lauder Web: http://www.thelauders.net E-Mail: [EMAIL PROTECTED] Resume: http://www.thelauders.net/resume/ Gentoo Powered "Any intelligent fool can make things bigger and more complex... It takes a touch of genius -- and a lot of courage to move in the opposite direction." -- Albert Einstein
