[rsbac] Trusted Debian v0.9 beta released

Peter Busser peter at trusteddebian.org
Mon Mar 17 21:07:33 MET 2003


I am proud to announce that the first official Trusted Debian beta release,
v0.9 is available from now on. It contains the following features:

* Linux 2.4.20 kernel
* Patches for the ethernet packet leak bug for most ethernet cards
* Simple upgrade from a normal Debian 3.0 (i.e. Woody) installation
* PaX non-executable stack patch (with maximum security settings)
* IBM stack smashing protector patch for GCC (formerly known as ProPolice)
* Almost all packages containing C/C++ files have been recompiled using the
  patched GCC compiler
* Many packages which contain executables have been recompiled to maximize
  the use of the PaX address layout randomization (this includes the most
  important servers, like BIND, Apache, Postfix and OpenSSH).
* FreeS/WAN 1.99 (with X.509 support)
* A patched Orinoco WLAN driver and libpcap to support airsnort
* HostAP drivers, to make it possible to use Trusted Debian as a WLAN base
* Snort IDS and Zorp firewall packages from unstable (the most recent ones)

This beta release does not contain RSBAC. The RSBAC kernel patch and admin
utilities will be added as soon as RSBAC 1.2.2 is released.

The Debian project contains several SE-Linux packages. Trusted Debian however
will use RSBAC and will therefore not support SE-Linux. There is a long list
of reasons for this, and you can find it at:

If you have questions or comments, then subscribe to the users-l or
developers-l mailing list. Bug reports can also be mailed to
bugs at trusteddebian.org

Anyways, happy hacking!

Peter Busser

More information about the rsbac mailing list