Vulnerability Development mailing list archives

Re: The NSA's Security-Enhanced Linux

From: "Timothy J. Miller" <cerebus () SACKHEADS ORG>
Date: Thu, 28 Dec 2000 09:21:50 -0600

Neal Dias <NDias () SUNGLASSHUT COM> writes:

As M. Shubert pointed out, let's remember that the NSA was not touting
SeLinux as a "trusted" solution, but a "security enhanced" linux.


Even beyond auditing requirements pointed out elsewhere, someone needs
to do the covert channel analysis (a notoriously hard problem) before
it could *really* be called "trusted."

-- Cerebus

Current thread:

The NSA's Security-Enhanced Linux Ralf-Philipp Weinmann (Dec 21)
- Re: The NSA's Security-Enhanced Linux Scott D. Yelich (Dec 22)
  - Re: The NSA's Security-Enhanced Linux Michael H. Warfield (Dec 22)
    - Re: The NSA's Security-Enhanced Linux Scott D. Yelich (Dec 22)
    - Re: The NSA's Security-Enhanced Linux Michael H. Warfield (Dec 22)
  - Re: The NSA's Security-Enhanced Linux M Schubert (Dec 22)
- <Possible follow-ups>
- Re: The NSA's Security-Enhanced Linux Neal Dias (Dec 22)
- Re: The NSA's Security-Enhanced Linux Neal Dias (Dec 25)
  - Re: The NSA's Security-Enhanced Linux Dom De Vitto (Dec 26)
- Re: The NSA's Security-Enhanced Linux Neal Dias (Dec 27)
  - Re: The NSA's Security-Enhanced Linux Timothy J. Miller (Dec 28)
  - Re: The NSA's Security-Enhanced Linux Scott D. Yelich (Dec 29)
    - Re: The NSA's Security-Enhanced Linux M.Schubert (Dec 29)
- Re: The NSA's Security-Enhanced Linux Neal Dias (Dec 29)
  - Re: The NSA's Security-Enhanced Linux geoffrey (Dec 29)