Archive for the 'Distributions' Category

SETools 3.3.7 Released

by James Morris |  Wednesday, May 12th, 2010

Tresys have announced the release of version 3.3.7 of the SETools policy analysis suite. Changes in this release include general usability improvements, bugfixes, and improved support for policy constraints.

Oracle Enteprise Linux 5.1 Certified at EAL4+

by James Morris |  Monday, November 17th, 2008

According to a press release from atsec, Oracle Enterprise Linux (OEL) 5.1 has been certified under common criteria to EAL4+ via LSPP, CAPP and RBACPP profiles. This is similar to previous certifications for Red Hat Enterprise Linux (upon which OEL is based), although it appears that this certification additionally covers the running of an unprivileged virtualized instance of the OS.

OpenSUSE 11.1 to Enable SELinux

by James Morris |  Thursday, August 21st, 2008

The OpenSUSE project has announced that OpenSUSE version 11.1 will include basic SELinux enablement. This effort will include enabling SELinux in their kernel, requisite patches to system tools, and SELinux support libraries. SELinux-specific tools will not be shipped by default, but will be available via the distribution repositories. Initial security policies, if shipped, will be limited to standard reference and minimal policies. SELinux will also be shipped as part of SUSE Linux Enterprise 11 as a technology preview. Community discussion on the topic is directed to the OpenSUSE Factory mailing list.

SGI Completes EAL4+ Certification on RHEL 5.1

by James Morris |  Saturday, July 19th, 2008

SGI have now completed certification for LSPP, RBACPP and CAPP at EAL4 augmented under the Common Criteria schemes, for their SGI Altix and Altix XE platforms. This certification follows similar efforts by IBM and HP. A copy of the validation report is available here.

OpenSolaris FMAC Alpha 1 Released

by James Morris |  Sunday, May 4th, 2008

OpenSolaris developers have announced the first release (Alpha 1) of source code for the FMAC project. This code drop of the current policy and toolchain infrastructure work allows security policy to be loaded into the operating system but not yet enforced.

SGI CAPP/LSPP EAL4+ Certification Test Suite Released

by James Morris |  Tuesday, April 22nd, 2008

SGI have announced the release of their certification test suite and its incorporation with the Linux Test Project (LTP). The test suite is a component of their EAL4+ CAPP/LSPP certification effort for RHEL 5.1 on Altix hardware, and is based on previous IBM work.

Opensolaris launches fine-grained MAC (FMAC) project with TE/Flask security

by James Morris |  Tuesday, March 4th, 2008

The NSA announced the launch of a fine-grained MAC (FMAC) project for OpenSolaris. Similar to SELinux, FMAC is the integration of the Flask/TE security scheme into the OS. For more information, visit the FMAC project page.

SELinux Support for Ubuntu Hardy

by James Morris |  Friday, February 8th, 2008

Caleb Case has announced experimental support for SELinux in the server edition of Ubuntu Hardy (currently in alpha release). Further information for people wishing to help with testing and development may be found at the Hardy SELinux wiki page.

HP Release Audit/MLS Certification Testsuite

by James Morris |  Friday, August 17th, 2007

HP announced the release of their Audit/MLS certification testsuite, which was used in conjunction with LTP as part of their RHEL5 CAPP/LSPP/RBACPP certification. The testsuite includes coverage of NetLabel/CIPSO, IPsec labeling, and CUPS printing.

IBM Release LSPP/EAL4 Testsuite

by James Morris |  Friday, August 17th, 2007

IBM have announced the public release of a certification testsuite for RHEL5 running with LSPP/EAL4. This is part of the Linux Test Project.