Technology news and Jobs 
Our Blogs Open Sauce LCA 2009: Making Linux more secure
Our Blogs Open Sauce LCA 2009: Making Linux more secure | LCA 2009: Making Linux more secure |
|
| by Sam Varghese | |
| Friday, 16 January 2009 | |
|
Page 3 of 3 Those who do decide to use it, will be able to use scripts to implement settings and will not have to fiddle manually. The scripts themselves are simple incantations so Russell has no fear that someone will be stuck in the unlikely event that a script bombs out. Featured Whitepaper
5 Best Practices for Smartphone Support
Russell says SE Linux works well on Fedora, Red Hat's community Linux distribution, and Debian with either GNOME or the older KDE . With KDE 4, there are some issues to be sorted out. Apart from this talk, he has also had to take on two others, both on similar topics, both of which were to be delivered by a friend, Japanese developer KaiGai Kohei, who is certified as a "genius programmer" by Japan's IT Promotion Agency . Kohei has had to drop out at the last minute. One of the talks will cover security-enhanced PostgreSQL which brings the controls present in SE Linux to the PostgreSQL database. Hence there is an unified access control model for the system, providing the same kind of security which SE Linux offers, for a web service stack. Russell has also stepped into the breach to pick up KaiGai's second talk, which was to be on LAPP/SELinux. LAPP is an acronym for Linux, Apache, Perl/Python and PostgreSQL, a small deviation away from the better-known LAMP (Linux, Apache, Perl/Python and MySQL) stack which is used to run millions of websites. LAPP/SE Linux focuses on using the same mandatory access controls in SE Linux across the entire stack. The kernel controls file access, Apache runs under contexts which match users, and PostgreSQL uses SE Linux support to allow access based on the context of the Apache threads. Russell is a familiar face at LCA, having been to every conference apart from the one held in Perth in 2003. He says he learns a lot from some of the talks, gets to exchange ideas and also provide information to the community through his own talks. He plans to launch a Xen server for SE Linux training in the near future. "I may get it going in time for LCA," he said. |
Tags
| < Next story in category | Previous story in the category > |
|---|
