It’s been three years since we upgraded the hardware that hosts our various sites. I contacted my provider (Crucial Paradigm) and got some competitive offers. Stefan, my friend in Berlin that I split the server with, and I agreed on the following specs: Athlon 64 x2 4000 (2 cores @ 2.1GHz, 512K L2 each) 4GB …
Category Archive: SELinux
Mar
08
2008
Jan
10
2008
SELinux Slogans
Lately conversations keep turning up new slogans for SELinux. I figure this is as good a place as any to keep a running list so here we go: SELinux – Because users do weird shit. SELinux – Fuck root. SELinux – Hampering administrators since before it was cool. SELinux – Take revenge against the BOFH …
Oct
30
2007
iPhone tiff exploit + jailbreak
We in the security community have been trying to explain the benefit of MAC to developers in the embedded device arena for awhile now. Maybe if people keep threatening devices with radio chips and tons of proprietary crap the embedded developers will jump onboard. Motorola has been using SELinux/SEBSD on the A1200 and other devices …
Jun
06
2007
SELinux FAQ #1
I reckon about three people a day enter the #selinux channel on freenode, ask a question, and than leave a few minutes later without giving anyone a chance to respond. Since no question askers read the topics or have the time to idle I figured I’d start posting their questions here. There is a good …
Jun
01
2007
The Environment, Environmental Contamination, and SELinux (part 3)
OK I’m going to go ahead and post this in the hopes it forces me to finish the series. Check back for updates. Not going to be this weekend, but by next weekend I promise. I’ve had the thoughts saved since I started part 1, but things kinda went awry (marriage, and then things just …
Jun
01
2007
Fedora Core 8
Fedora 7 has been officially released. Hurry and get yours while they last. I expect Brickwall support (read -> free SELinux tools) to be out momentarily. Hmm…. I’ll go ahead and change this to FC 8 just to keep ahead of the trend Anyways the Fedora Core 7 (FC7) release of Brickwall can be found …
Apr
12
2007
Tresys Brickwall Professional for Fedora Core 6 is available for FREE!!!
Two blogs ago I felt the urge to promote something my team was working on at Tresys that was only available for Red Hat Enterprise Linux 4. Well I’m pleased to announce Tresys has released a new version of our Brickwall Security Suite for Fedora Core 6. Not only our standard version, but our professional …
Jan
23
2007
Tresys Brickwall for SELinux
Been awhile but been busy. The company I work for just released our first product. It’s an application that makes using SELinux much easier. There are three versions: standard, professional, and enterprise. I think enterprise is pretty damn cool. It allows you to remotely manage SELinux policy for groups of machines from a single location. …
May
05
2006
The Environment, Environmental Contamination, and SELinux (part 2)
I realized after posting the first article in this series that I gave very little indication on where I plan to head with this subject. So perhaps a game plan is an order. Errata: At the beginning I planned to focus on the environment and SELinux. I hoped to explain how certain types of applications …
May
05
2006
SELinux & LSM Kernel Basics
While working on the second article in the environmental contamination series I found that 1/2 of the article was spent wading through the security structure and Flask implementation in the kernel. Since this is an important and recurring topic I figured I would split it out into a separate article and just link to this …
