On Fri, 25 Aug 2006, Ajith Vargese Thampi wrote: >> Whats TSLs current use of (or statement to): >> >> - SELinux >> - RBAC >> - ASLR >> etc? >> > > SELinux - This has been planned, but never been executed. Wonder Why? Maybe > its too much work.
Security IS MUCH work. > RBAC - Should say "no comment" ;) . Why? > ASLR - yes, address space layout randomization, which needs to be patched to > the kernel right? Sorry, you just shot yourself in the foot. Honestly. Basic ASLR is in the kernel since 2.6.12... > Most of these were into consideration atleast, but i can surely hope to add > it into TSL sometimes. There quite a few options and i guess taking them one > step at a time would be great start. Well, WHAT exactly does make TSL "secure" these days? I dont want to beat this subject to death, but when i look at CentOS/RHEL i see SELinux and some other stuff. There was a nice article in the last c't (german magazine) listing which of the mainstream distros are using which security mechanisms. So, maybe its time to change the name to Trustix Small Linux. But well, there is some serious competition too: CentOS ServerCD, or if you want it smaller: DSL :-) Danny -- Q: Gentoo is too hard to install = http://www.cyberdelia.de and I feel like whining. = [EMAIL PROTECTED] A: Please see /dev/null. = (from the gentoo installer FAQ) = \o/ _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
