On Tue, 2004-06-08 at 10:27, Andy Green wrote: > OTOH there is this increasingly obvious tension between what an actual > community project might do and motivations driven by servicing Enterprise > (eg, the focus on selinux?) SELinux is not just for enterprises. If you are the least bit concerned about malicious code/data exploiting flaws in your browser, mail client, irc client, etc, then you might want to consider SELinux. See http://www.nsa.gov/selinux/papers/inevitability/ and http://www.nsa.gov/selinux/papers/ottawa01/index.html. SELinux is also not just in Fedora; the kernel code is in the mainline kernel, SELinux userland packages exist for Debian, Hardened Gentoo has integrated SELinux, SuSE Linux 9.1 has a SELinux kernel and utilities (but SELinux is disabled by default). And then there is SEBSD, the port to FreeBSD 5. -- Stephen Smalley <sds@xxxxxxxxxxxxxx> National Security Agency
