Archive for March, 2006
The SELinux folk at MITRE have announced version 1.3 of their automated policy generation tool Polgen. Significant new features include Polgen Specification Language (PSL), presented at the recent SELinux Symposium (see here), and a new sourceforge project page, to facilitate greater community involvement in the project.
For those of you who weren’t at the recent SELinux Symposium or didn’t get a chance to see the Tresys Brickwall preview the presentation has been posted to the web on the Tresys product webpage.
Stephen Smalley has announced a bug in the SELinux kernel code with security implications. At this stage, it appears to be limited in scope as the underlying DAC controls will still operate and exploitation is rather convoluted. A simple patch has been added to Andrew Morton’s -mm tree, while a cleaner but more invasive fix is planned for 2.6.17.
Vendor updates to follow.