I'm just a little bored about all these posts of "what secure does
mean? It has the l33t XYZ ultimate security tool?".
I'll just tell you my experience. I've tried many linux distributions,
and TSL until now has proven the most robust, well-known and updated
server platform, at least for non mission critical application (boys
don't take this as an insult, but when it comes to what distro install
customers just always want R....t EL, because is the only one that
they know...).
This is because TSL use standard and well-known application, has no
patch/fix/tricks/the-hell-know installed to drive a sysadmin like me
crazy (like SElinux...), is regularly updated to the latest security
patch, and go straight-to-the-point when it comes to just work.
Yes, I'll like too if some cool patch could be included in the default
install (GRsecurity comes to mind), but you have to consider how much
this would improve security versus simplicity (about all these patch
need manual configuration...and human error is always right behind the
corner).
The main thing I've to regret to TSL guys is that they still haven't
spoken to VMware to add TSl to the supported guests OSs, making me
crazy when a new 2.6.x kernel is released :P.
xeon
_______________________________________________
tsl-discuss mailing list
[email protected]
http://lists.trustix.org/mailman/listinfo/tsl-discuss
