|
About:
NSA Security-enhanced Linux is a set of patches to the Linux kernel and some utilities to incorporate a strong, flexible mandatory access control architecture into the major subsystems of the kernel. It provides a mechanism to enforce the separation of information based on confidentiality and integrity requirements, which allows threats of tampering and bypassing of application security mechanisms to be addressed and enables the confinement of damage that can be caused by malicious or flawed applications. It includes a set of sample security policy configuration files designed to meet common, general-purpose security goals.
Release focus: Minor feature enhancements
Changes:
The base kernel versions have been updated to 2.5.74 and 2.4.21. The SELinux API redesign with xattr support has been completed for the 2.5-based kernel. The SELinux daemon and utility patches have been ported to the new API. Support for the AT_SECURE auxv entry was added. Changes were made to bprm hook permission checking and nosuid operation. A report, "Securing the X Window System with SELinux", was added to documentation discussing adding SELinux controls to the window system. Many contributed patches have been merged, and RPM spec files and SRPMs are now provided.
Author:
NSA Security-enhanced Linux Team [contact developer]
Homepage:
http://www.nsa.gov/selinux/
Tar/GZ:
http://www.nsa.gov/selinux/code/
Changelog:
http://www.nsa.gov/selinux/news.cfm
Mailing list archive:
http://www.nsa.gov/selinux/list-archive/
Trove categories:
[change]
Dependencies:
[change]
No dependencies filed
|
