NSA Security-enhanced Linux 200109261436 by NSA Security-enhanced Linux Team (http://freshmeat.net/users/nsalinux/) Friday, September 28th 2001 17:54 Category: Security About: NSA Security-enhanced Linux is a set of patches to the Linux kernel and some utilities to incorporate a strong, flexible mandatory access control architecture into the major subsystems of the kernel. It provides a mechanism to enforce the separation of information based on confidentiality and integrity requirements, which allows threats of tampering and bypassing of application security mechanisms to be addressed and enables the confinement of damage that can be caused by malicious or flawed applications. It includes a set of sample security policy configuration files designed to meet common, general-purpose security goals. Changes: Many bugfixes and improvements in both LSM and SELinux, new and reworked hooks to control additional operations, and domains for hwclock, ping, FreeSWAN IKE daemon, and Apache. None of these has been extensively tested by the NSA SELinux team and may require some additional work. While FreeSWAN and Apache policy is provided, no FreeSWAN or Apache software or patches are included. License: GNU General Public License (GPL) URL: http://freshmeat.net/projects/selinux/ -- Elias Levy SecurityFocus http://www.securityfocus.com/ Si vis pacem, para bellum
This archive was generated by hypermail 2b30 : Mon Oct 01 2001 - 16:46:23 PDT