Linux in Government: Security Enhanced Linux - The Future is Now By Tom Adelstein on Fri, 2004-12-17 00:00.
An interview with Bill McCarty, author of a new book on SELinux, about the potential SELinux holds for secure computing. If a must-have, must-know innovation exists for Linux's future viability, you might place all bets on Security Enhanced Linux. Vastly misunderstood and underrated, SELinux provides a marketing differentiator that could carry Linux deep into infrastructures that so far have shown lukewarm acceptance of the open-source operating system. SELinux transforms standard Linux from a cost-effective and secure operating system into a behemoth. In December 2000, researchers at the U.S. National Security Agency (NSA) working with Network Associates and MITRE released a B1 Class operating system to the public known as SELinux. Although many Linux professionals have heard of SELinux, few recognize that its heritage reaches back to the work of David Bell and Leonard LaPadula, work begun in 1973. Bell and LaPadula's work helped define the criteria that make up the U.S. Government's Trusted Computer System Evaluation Criteria (TCSEC). Four years after the release of SELinux, several Linux distributors, Red Hat, SUSE, Debian GNU/Linux and Gentoo Linux, finally have announced plans to support it. As with many new technologies, a lack of easily digestible information created a barrier to understanding and using NSA's Linux. So when BillMcCarty's recent book, SELinux NSA's Open Source Security Enhanced Linux hit the market last month, I grabbed a copy. In all of his books, Bill explains the Linux security model in logically organized, simple and understandable terms. I zipped through his book and began working with SELinux immediately. I found Bill's directions to be clear, following a step-by-step method of helping the reader gain knowledge and then helping him or her apply that knowledge. His new book helps you understand the SE Linux model, install the necessary components and troubleshoot problems that might arise. Add a nice section on administering SE Linux, and you have a complete manual to lead you into the realm SE Linux specialists. Although unusual, readers should find the standard body of information and knowledge required for SELinux in less than 200 readable pages. I contacted Andy Oram, Bill's editor at O'Reilly & Associates, and arrange for an interview with the author. Like his book, Bill surprised me with with his vast knowledge and ability to articulate his subject in discernible ways..... < snip > http://www.linuxjournal.com/article/7955 You are a subscribed member of the infowarrior list. Visit www.infowarrior.org for list information or to unsubscribe. This message may be redistributed freely in its entirety. Any and all copyrights appearing in list messages are maintained by their respective owners.
