[rsbac] Trusted Debian v0.9 beta released
Peter Busser
peter at trusteddebian.org
Mon Mar 17 21:07:33 MET 2003
Hi!
I am proud to announce that the first official Trusted Debian beta release,
v0.9 is available from now on. It contains the following features:
* Linux 2.4.20 kernel
* Patches for the ethernet packet leak bug for most ethernet cards
* Simple upgrade from a normal Debian 3.0 (i.e. Woody) installation
* PaX non-executable stack patch (with maximum security settings)
* IBM stack smashing protector patch for GCC (formerly known as ProPolice)
* Almost all packages containing C/C++ files have been recompiled using the
patched GCC compiler
* Many packages which contain executables have been recompiled to maximize
the use of the PaX address layout randomization (this includes the most
important servers, like BIND, Apache, Postfix and OpenSSH).
* FreeS/WAN 1.99 (with X.509 support)
* A patched Orinoco WLAN driver and libpcap to support airsnort
* HostAP drivers, to make it possible to use Trusted Debian as a WLAN base
station.
* Snort IDS and Zorp firewall packages from unstable (the most recent ones)
This beta release does not contain RSBAC. The RSBAC kernel patch and admin
utilities will be added as soon as RSBAC 1.2.2 is released.
The Debian project contains several SE-Linux packages. Trusted Debian however
will use RSBAC and will therefore not support SE-Linux. There is a long list
of reasons for this, and you can find it at:
http://www.trusteddebian.org/rsbac.html
If you have questions or comments, then subscribe to the users-l or
developers-l mailing list. Bug reports can also be mailed to
bugs at trusteddebian.org
Anyways, happy hacking!
Groetjes,
Peter Busser
More information about the rsbac
mailing list