Here's one for the selinux list: a thread just started on the CentOS list,
about whether the encryption tools from upstream were trustworthy, given
the revelations from Snowdon in the last six months. That, of course,
leads to the question as to whether selinux, and its base policies, are
trustworthy, given they were written by the NSA....
So, why *should* we trust it?
mark "no, I do not have the time or energy to audit and comprehend
the
implications of all of selinux's policies myself"