Computerworld New Zealand - Security Enhanced Linux, a "hardened" version of the open-source software that was helped into existence by a U.S. spy agency, is on the verge of gaining broad acceptance, a New Zealand developer says.
Kerry Thompson, an Auckland security consultant, says the pending release of the Fedora Core 2 distribution will introduce SELinux to mainstream Linux users. Fedora is sponsored by Red Hat Inc. and built on Red Hat 9, and has been adopted by many former Red Hat community members. Red Hat Enterprise Linux 4, due early next year, will also include SELinux technology.
SELinux, produced by the National Security Agency, security companies and open-source developers, extends the Linux kernel to include a media access control (MAC) system, restricting access to system resources for users and programs. MAC makes it more difficult for a rogue user or program to take control of other processes, files or devices.
Thompson has done "a fair bit" of SELinux testing, development and documentation over recent years but hasn't yet managed to install SELinux on a client's computer.
"I haven't heard of anyone in New Zealand doing deployment," he says. "No one's used it in anger."
Fedora is likely to change that. Red Hat developers use Fedora as a testing ground for the company's enterprise distribution, so bugs and implementation issues should get attention.
Fedora Core 2 is currently available in beta release; a final version is expected next month.
At the moment, SELinux probably isn't ready for widespread production use, Thompson says.
"It's still pretty much beta software. It's still quite experimental, and it uses features that could mess up your servers and things like that," he says. "It's also debatable that people really need it." Customers that do need very secure computers are likely to use hardened Unix systems, he says, but SELinux promises much more.
"You can load a policy in the kernel of a box and tighten it down far more than you could with a normal Unix box," Thompson says.
Last week Thompson presented a demonstration of SELinux to the Auckland Linux User Group, with 23 people attending.
"But as Fedora comes out and it gets more mainstream, we expect more people will be interested in this," he says.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- HP HAVEn: See the big picture in Big Data HP HAVEn is the industry's first comprehensive, scalable, open, and secure platform for Big Data. Enterprises are drowning in a sea of data...
- What Datapipe customers need to know about the new PCI DSS 3.0 compliance standard This handy quick reference outlines what PCI DSS 3.0 is, who needs to be compliant and how Alert Logic solutions address the new...
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- Live Webcast Best Practices for the Hyperconverged Enterprise Network To the Age of Constant Connectivity and Information overload
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Endpoint Backup & Restore: Protect Everyone, Everywhere Arek Sokol from the bleeding-edge IT team at Genentech/Roche explains how he leverages cross-platform enterprise endpoint backup in the public cloud as part...
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well...
- The New Way to Work Knowledge Vault This Knowledge Vault focuses on how, in today's increasingly virtual world, it's more important than ever to engage deeply with employees, suppliers, partners,...