Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: [Dailydave] Linux security q's of day
From: Barrie Dempster (barriereboot-robot.net)
Date: Wed Jul 05 2006 - 15:34:09 CDT
On Wednesday 05 July 2006 20:45, Dave Aitel wrote:
> Questions of the day:
> Is there a graph anywhere comparing different linux distributions
> patch speed? Which distro patched the OpenOffice bugs first/last?
Haven't seen one, do you think it's likely to differ to any noticable degree
between the major distros ?
> When will Ubuntu include grsec?
Lorenzo Hernández García-Hierro started the ubuntu-hardened effort, modelled
after debian hardened, but it hasn't really gone anywhere yet, I had a few
disucssions with him about it around the time the initial Ubuntu releases
(warty/hoary) were gaining ground, lot's of vision, but not a lot of visible
effort. It has very little support and I don't think including any sort of
grsec type feature is at the forefront of canonicals thinking. Shame really,
as a binary based distribution with such a well formed package management
system and well defined lifecycle could really produce a distribution with
some sensible default security measures without too much of a detriment to
This was the latest mail to the Ubuntu-hardened list which is discussing the
features ear-marked for Edgy. (The same thing happened for Breezy but it
didn't go anywhere then or for Dapper) As you can see there was a real flurry
of excitement on the mailing list regarding the announcement..........
Ubuntu is doing well in usability/popularity, but they could really do with
stepping up the security if they want to continue playing the game.
Barrie Dempster (zeedo) - Fortiter et Strenue
- http://reboot-robot.net -
"He who hingeth aboot, geteth hee-haw" Victor - Still Game
Dailydave mailing list
- application/pkcs7-signature attachment: smime.p7s