NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Vuln-Dev> 2000-q4

Subject: Re: The NSA's Security-Enhanced Linux
From: Michael H. Warfield (mhwWITTSEND.COM)
Date: Fri Dec 22 2000 - 10:42:42 CST

Next message: M Schubert: "Re: GATEWAY ?"
Previous message: Joseph Spears: "Re: EMC Symmetrix SAN"
In reply to: Scott D. Yelich: "Re: The NSA's Security-Enhanced Linux"
Next in thread: Scott D. Yelich: "Re: The NSA's Security-Enhanced Linux"
Reply: Michael H. Warfield: "Re: The NSA's Security-Enhanced Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Dec 22, 2000 at 05:18:42AM -0700, Scott D. Yelich wrote:
> On Fri, 22 Dec 2000, Ralf-Philipp Weinmann wrote:
> > citing http://www.nsa.gov/selinux/background.html:
> > [...]
> > The result is available for download at the above URL
> > as well. Has anyone here toyed with it already ?
> > Cheers,
> > -Ralf

> Seems like this is a "demo" ... would anyone be able to compare this
> system to a system that is not attempting to be a demo -- such as
> Pitbull (solaris?)? It frightens me to think that anyone would
> trust linux :-> but, alas, who knows. Maybe is enough sugar is
> poured on top, it just won't continue to smell so bad.

Huh? What was this? A troll? Must have been. Nobody could
be that clueless... Ok... Let's nibble...

The government seem to feel that it makes a lot MORE sense to
trust something that they have the sources for and that they don't
have to be held captive to a vendors path and fixes and support (or
lack thereof).

My God! Look at the mess Microsoft had in the version 1 security
service provider. That wasn't getting fixed until the Samba team started
kicking over those rocks and exposed it for the joke that it was...

Solaris is rather precious, too... Took Sun over a year to fix
the rsh hole that Alan Cox reported to them. Took them over 9 months
to finally tell me that there would be no fix for the NISNuke problem
and that they recommended installing open source versions of the finger
daemon (they really made that recommendation).

Frightens me that anyone would trust a closed source operating
system for security. :->

(A trolling we will go, a trolling we will go, a hie ho the
merry'o, a trolling we will go...)

> Scott

Mike

--
 Michael H. Warfield    |  (770) 985-6132   |  mhwWittsEnd.com
  (The Mad Wizard)      |  (678) 463-0932   |  http://www.wittsend.com/mhw/
  NIC whois:  MHW9      |  An optimist believes we live in the best of all
 PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!

Next message: M Schubert: "Re: GATEWAY ?"
Previous message: Joseph Spears: "Re: EMC Symmetrix SAN"
In reply to: Scott D. Yelich: "Re: The NSA's Security-Enhanced Linux"
Next in thread: Scott D. Yelich: "Re: The NSA's Security-Enhanced Linux"
Reply: Michael H. Warfield: "Re: The NSA's Security-Enhanced Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]