ubuntu-hardened July 2008 archive
Main Archive Page > Month Archives  > ubuntu-hardened archives
ubuntu-hardened: Re: [ubuntu-hardened] SmackConfiguration wiki

Re: [ubuntu-hardened] SmackConfiguration wiki page

From: Casey Schaufler <casey_at_nospam>
Date: Fri Jul 18 2008 - 06:24:23 GMT
To: Kees Cook <kees@ubuntu.com>


Kees Cook wrote:
> On Wed, Jul 02, 2008 at 09:12:14PM -0700, Casey Schaufler wrote:
>
>> I have added the SmackConfiguration wiki page.
>>
>
>

I am very sorry that I flaked out on today's meeting. Between getting ready for OLS and a new job it just fell out of my brain.

> This looks really great! Thanks. Some ideas would be to make it more
> specific to Ubuntu (i.e. instead of saying "2.6.25 and later", using
> "Intrepid and later").
>
>

OK, I will look into that.

> Beyond that, I see two things that need to be fixed:
> 1) Smack needs to be enabled in the kernel
> 2) smack-utils needs to be packaged for Ubuntu (and/or Debian)
>
> I've already asked Tim Gardner (kernel team) to turn on the config for Smack,
> so that should show up in the next Intrepid kernel.
>
>

Just a heads up, you can't have both SELinux and Smack at the same time. The initialization logic will enable whichever gets loaded first (it will be SELinux, BTW) and refuse the second.

> Is anyone interested in doing some from-scratch packaging of
> smack-utils?
>
>

I'll buy anyone who does this as many beers (or coffees) as they can drink in a day.

> Thanks,
>
> -Kees
>
>

-- ubuntu-hardened mailing list ubuntu-hardened@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-hardened