It’s been three years since we upgraded the hardware that hosts our various sites. I contacted my provider (Crucial Paradigm) and got some competitive offers. Stefan, my friend in Berlin that I split the server with, and I agreed on the following specs:

Athlon 64 x2 4000 (2 cores @ 2.1GHz, 512K L2 each)
4GB RAM, [...]

Lately conversations keep turning up new slogans for SELinux. I figure this is as good a place as any to keep a running list so here we go:

SELinux - Because users do weird shit.
SELinux - Fuck root.
SELinux - Hampering administrators since before it was cool.
SELinux - Take revenge against the BOFH
SELinux - High-security gone [...]

We in the security community have been trying to explain the benefit of MAC to developers in the embedded device arena for awhile now. Maybe if people keep threatening devices with radio chips and tons of proprietary crap the embedded developers will jump onboard. Motorola has been using SELinux/SEBSD on the A1200 and [...]

I reckon about three people a day enter the #selinux channel on freenode, ask a question, and than leave a few minutes later without giving anyone a chance to respond. Since no question askers read the topics or have the time to idle I figured I’d start posting their questions here. There is [...]

OK I’m going to go ahead and post this in the hopes it forces me to finish the series. Check back for updates. Not going to be this weekend, but by next weekend I promise. I’ve had the thoughts saved since I started part 1, but things kinda went awry (marriage, and [...]

Fedora 7 has been officially released. Hurry and get yours while they last. I expect Brickwall support (read -> free SELinux tools) to be out momentarily. Hmm…. I’ll go ahead and change this to FC 8 just to keep ahead of the trend
Anyways the Fedora Core 7 (FC7) release of [...]

Two blogs ago I felt the urge to promote something my team was working on at Tresys that was only available for Red Hat Enterprise Linux 4. Well I’m pleased to announce Tresys has released a new version of our Brickwall Security Suite for Fedora Core 6. Not only our standard version, but [...]

Been awhile but been busy.
The company I work for just released our first product. It’s an application that makes using SELinux much easier. There are three versions: standard, professional, and enterprise. I think enterprise is pretty damn cool. It allows you to remotely manage SELinux policy for groups of machines from [...]

I realized after posting the first article in this series that I gave very little indication on where I plan to head with this subject. So perhaps a game plan is an order.
Errata: At the beginning I planned to focus on the environment and SELinux. I hoped to explain how certain [...]

While working on the second article in the environmental contamination series I found that 1/2 of the article was spent wading through the security structure and Flask implementation in the kernel. Since this is an important and recurring topic I figured I would split it out into a separate article and just link to [...]