[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Is this mail list dead?

To: Chris <smithchr@mindspring.com>
Subject: Re: Is this mail list dead?
From: Pedro Rosa <Pedro.Rosa@ksu.ru>
Date: Tue, 13 Mar 2001 15:02:48 +0300
CC: securedistros@nl.linux.org, selinux@tycho.nsa.gov
References: <Pine.LNX.4.32.0103121443130.16938-100000@arwin.microunity.com> <3AAD5908.73A44E4C@wirex.com> <20010312154024.J13139@ultraviolet.org> <3AADA219.2C4BC605@mindspring.com>
Reply-To: securedistros@nl.linux.org
Sender: owner-securedistros@nl.linux.org
User-Agent: Mozilla/5.0 (X11; U; Linux 2.4.2-9mdksmp i686; en-US; 0.8) Gecko/20010216

Chris wrote:

> Tracy R Reed wrote:
> 
>> On Mon, Mar 12, 2001 at 03:17:28PM -0800, Crispin Cowan wrote:
>> 
>>> It still seems to function, but the particpants no longer seem
>>> interested in the charger.  It was supposed to be for cross-distro
>>> discussion of issues perinant to security-oriented Linux distributions.
>>> Since the list was founded, some of those distros have died, and the new
>>> ones to come along (e.g. SELinux) don't seem to have joined.
>> 
>> Unfortunately, not many distros seem interested in security in general.
>> It's giving Linux a bad name.
> 
Frankly I consider that this is not a problem of Linux by itself.  
Distros are mostly a concept and a philosophy of use. And they try to be 
as broad as they can. However security is a specific and very particular 
task. One may try a few general ideas and produce a "secure" distro. But 
that cannot go far from a pilot test and no matter the way you cover the 
security problems you must consider it as a private and particular matter...

I would say that securing Linux in a distro structure would be the same 
as forcing C2 to every Windows install.... Yeah try to use such an 
install...

>> 
>> 
>> I've cc'd the selinux guys on this as an invite for some of them to join
>> the list.
>> 
>> --
>> Tracy Reed      http://www.ultraviolet.org
> 
> 
> There are still some people reading and monitoring.  I am
> just one who is interested in learning and have not had
> anything to add.

Yeap... But maybe people are waiting from the wrong side. Maybe the 
discussion should start in other way. Not about the distro but about 
such things as sfs, LIDS, SSH and similars. Not about creating a secure 
distro but speaking about security methods and approaches. Then it is 
probable that these lists get alive... Really I have seen lots of talks 
about this BS carrying the name of "secure linux". There cannot be such 
a thing in Nature, no matter the dreams of millions to see Linux 
overcome Redmond's MazDie (well,  I also do have dreams about it). One 
thing that made me subscribe to selinux was the fact that NSA seems to 
approach the matter in the correct view. As they say (please correct me 
if not so) is the fact that selinux is just a pilot system. NOT a secure 
Linux distro. You may find approaches that may help you to secure your 
boxes or systems. But in the whole this system will barely be useful.

> 
> kegwasher
> 
> --
> You have received this message because you are subscribed to the selinux list.
> If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
> the words "unsubscribe selinux" without quotes as the message.
> 
> 

-
Securedistros: A common list for all secured Linux distributions
Archive:       http://humbolt.nl.linux.org/lists/

Follow-Ups:
- Re: Is this mail list dead?
  - From: Casey Schaufler <casey@sgi.com>

References:
- Is this mail list dead?
  - From: Bob Van Cleef <vancleef@microunity.com>
- Re: Is this mail list dead?
  - From: Crispin Cowan <crispin@wirex.com>
- Re: Is this mail list dead?
  - From: Tracy R Reed <treed@ultraviolet.org>
- Re: Is this mail list dead?
  - From: Chris <smithchr@mindspring.com>

Prev by Date: Re: Is this mail list dead?
Next by Date: Re: Is this mail list dead?
Prev by thread: Re: Is this mail list dead?
Next by thread: Re: Is this mail list dead?
Index(es):
- Date
- Thread