This was discussed briefly on debian-devel. See http://lists.debian.org/debian-devel-0012/msg02192.html for the start of the thread. One of the problems with "porting" the NSA stuff to Debian is that they actually implemented entirely new system calls. So there distribution is completely dependent on their kernel patches. Apparently there has been talk on the kernel list of merging the NSA kernel work with the main source tree, but that wouldn't happen until after 2.4. Until it happens I don't think you'll see an NSA enhanced Debian. The possibility does exist of a fork of the distribution, resulting in a separate NSA-based Debian-like distribution, but I don't think anybody is that interested in it. noah On Tue, Jan 02, 2001 at 06:20:44PM +0100, Javier Fernandez-Sanguino Peña wrote: > > I have gone through http://www.nsa.gov/selinux/ (Security-Enhanced Linux) and > it seems to be some interesting work on how Linux security can be overall > improved, I've found with distress, however that the patches applied seem to be > from RedHat versions (not original source). > Before starting to do my own work with it, however, I would like to know if > other Debian people have heard of the project and what do they think of it. > Could be used for Debian? > They seem to be working on auditing the source of what we could consider our > "base-filesystem" so the kind of code-auditing that was proposed in the list > earlier could start here. > > Regards > > Javi > > > -- > To UNSUBSCRIBE, email to debian-security-request@lists.debian.org > with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org > -- _______________________________________________________ | Web: http://web.morgul.net/~frodo/ | PGP Public Key: http://web.morgul.net/~frodo/mail.html
Attachment:
pgplXqduhOFB5.pgp
Description: PGP signature