Beefy Boxes and Bandwidth Generously Provided by pair Networks
Don't ask to ask, just ask
 
PerlMonks  

Re: Secure Linux

by shotgunefx (Parson)
on Sep 16, 2001 at 02:10 UTC ( [id://112661]=note: print w/replies, xml ) Need Help??


in reply to Secure Linux

I've read abit about this. The fact that the N S A id this makes you wonder about the possiblities of backdoors and such. It would be a lot of source to audit.

-Lee

"To be civilized is to deny one's nature."

Replies are listed 'Best First'.
Re: Re: Secure Linux
by andreychek (Parson) on Sep 16, 2001 at 02:38 UTC
    Actually, if I remember correctly -- they provide a patch that one can install on an existing kernel. While in the case of any third-party code, it should definitely be inspected -- it seems less likely that any "funny" business is going on here.

    I had downloaded it last time they made a release, and the security that would be provided by their code seemed incredible. I think it would be very advantagous to the Linux community when it gets to the point that they are sending those patches to Linus.

    Do you remember some time ago when the rumour's were spreading around about a NSA Backdoor in Windows? While it might be funny to start a rumour about Linus and the NSA hitting it off, the truth is, it's very cool that we can prove it's not the case here by simply looking at the code. Long live open source software :-)
    -Eric

    Update: Just to be sure -- I am not accusing anyone of creating such a rumour. Think of it this way -- that rumour already exists regarding MS Windows. Some major news sources in the US have said that there may be an NSA backdoor in Windows. I also saw an article where the French government is saying the same thing. The problem is, we'll never know. Windows is closed source. My joke was that we could make a new post right now creating such a rumour about Linux. The thing is -- by following shotgunefx's suggestion of a code review, we could easily stop such a rumour within a few days, or perhaps even hours.

    Update2: Thanks to cLive ;-), I updated the link regarding the NSA backdoor. Makes you wonder..... :-)
      While I personally consider the NSA to be a very suspect agency, considering the extensive invasion of communication they have been invested in, I (just in my gut), trust them. Although they have been and are invasive, I think that they have a job to do and that it is a worthwhile one. In lieu of tuesday's incident (not just because of it), I think that there must some reconsideration of opposition to domestic and abroad intelligence gathering techniques. I don't nescessarily feel that reading my email is right, but I think that there is something to think about here.

      Also, I think a NSA secure linux is an awesome thing to have - something for the public that can be immediately recognized as coming from the NSA...They are working for us, as citizens...(I'm not waving the flag, I'm pretty anti-blind-patriotism). Also, if they were trying to somehow spy on us, I don't think that they'd do it through a piece of software you could download from their website. :)
      It might be funny to start a rumor, but I don't see how that's what I'm doing. Given the track record, Eschelon, Carnivore etc. Do you really think a thorough code audit isn't in order? I certainly think there is merit in the project. I just think the potential certainly could be there and it needs to be looked at.

      -Lee

      "To be civilized is to deny one's nature."
        Now that I reread my post -- I realize I must appologize.. I was not at all accusing you of starting such a rumour, nor do I think that was your intention. I was joking about our ability -- right here, right now.. creating a new post which was a rumour about that. But I was only joking, and I don't advocate speading false rumours :-)

        I agree that a code review is always in order, for any code put into the Linux kernel.. or on any system, for that matter. I'm very glad that it's open source software that we're all involved in, for code reviews are a luxury we have.
        -Eric
      Not that we should get paranoid or anything - ;-) - but your cnn link is a 404, so use google's cache instead.

      cLive ;-)

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://112661]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others sharing their wisdom with the Monastery: (5)
As of 2024-03-29 12:15 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found