Gavin Henry wrote:
On Sunday 18 Jan 2004 2:54 am, Alan Cox wrote:
>>On Sat, Jan 17, 2004 at 11:21:01PM -0300, Alexandre Strube wrote:
>>
>>>What, NSA trying to protect our computer's privacy? Or opening it easier
>>>to them? They don't look like the kind of organization which loves
>>>people's privacy. This SELinux stuff is all weird to me.
>>
>>One of the beauties of Open Source.
>>
>>The NSA is charged with several things including protecting the USA from
>>bad stuff. Nobody would trust the NSA code apart from the fact that being
>>open lots of other people (including foreign NSA equivalents) have been
>>looking over it. If the NSA have backdoored it then it would have to be
>>very well hidden, and its probably much more likely they backdoored
>>the x86 silicon instead.
>>
>>Alan
What about grsecurity? Were there any talks about this instead of SELinux?
SELinux was included as a standard part of the upstream 2.6 kernel.
grsecurity was not.
I myself have never used grsecurity, but I understand that it has
exec-shield-like protection and some MAC-like protections. I highly
suspect that selinux can do everything grsecurity can do, and perhaps
more, and with finer granularity.
Warren