Warning this article may contain opinions of the author that you and iTWire don't necessarily agree with. Don't let them get away with it - have your say with a comment!

No. 1 Story

ACCC clears Optus to scrap HFC network and use NBN instead

The ACCC has cleared, provisionally, the proposed deal between Optus and NBN Co under which Optus is to be paid around $800m to shut down its HFC network and transfer customers onto the NBN. read more

More From

Popular Threads

LCA 2009: Making Linux more secure

Sam Varghese
Friday, 16 January 2009 04:22

Opinion and Analysis

View Comments
Page 3 of 3

Those who do decide to use it, will be able to use scripts to implement settings and will not have to fiddle manually. The scripts themselves are simple incantations so Russell has no fear that someone will be stuck in the unlikely event that a script bombs out.

Russell says SE Linux works well on Fedora, Red Hat's community Linux distribution, and Debian with either GNOME or the older KDE . With KDE 4, there are some issues to be sorted out.

Apart from this talk, he has also had to take on two others, both on similar topics, both of which were to be delivered by a friend, Japanese developer KaiGai Kohei, who is certified as a "genius programmer" by Japan's IT Promotion Agency . Kohei has had to drop out at the last minute.

One of the talks will cover security-enhanced PostgreSQL which brings the controls present in SE Linux to the PostgreSQL database. Hence there is an unified access control model for the system, providing the same kind of security which SE Linux offers, for a web service stack.

Russell has also stepped into the breach to pick up KaiGai's second talk, which was to be on LAPP/SELinux. LAPP is an acronym for Linux, Apache, Perl/Python and PostgreSQL, a small deviation away from the better-known LAMP (Linux, Apache, Perl/Python and MySQL) stack which is used to run millions of websites.

LAPP/SE Linux focuses on using the same mandatory access controls in SE Linux across the entire stack. The kernel controls file access, Apache runs under contexts which match users, and PostgreSQL uses SE Linux support to allow access based on the context of the Apache threads.

Russell is a familiar face at LCA, having been to every conference apart from the one held in Perth in 2003. He says he learns a lot from some of the talks, gets to exchange ideas and also provide information to the community through his own talks.

He plans to launch a Xen server for SE Linux training in the near future. "I may get it going in time for LCA," he said.


Start 1 2 3 Next 

Our Services for Technology Professionals

E - mail News SMS Headlines Desktop Alerts News Feeds Job Alerts Technology Events Press-Releases