Ubuntu Security Center?

John Richard Moser nigelenki at comcast.net
Thu Mar 17 23:03:27 CST 2005 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've taken a quick look at Bastille and think some of the functionality
could be crafted into Ubuntu to create the "Ubuntu Linux Security
Center."  I've created a mock-up using glade-gnome-2 (glade-2), although
it's very ugly :)

The Mock-up includes tabs for PaX, GrSecurity, chroot() jail tightening
(a part of GrSecurity), and Stack Smash Protection (a la ProPolice and
LibSafe).  To avoid flames, I'm going to explicitly state at this time
that these tabs are both incomplete (why waste time filling them) and
- -theoretical-; Ubuntu as it stands does not use PaX, GrSecurity, or
ProPolice, though there has been some effort in that direction.

Again, this is based on a visual grep of Bastille.  I purposely didn't
include the one about hiding ifconfig and crap; normal users can just
compile their own copies and ship them to the machine right?  So much
for that. . .  (notably, they can't bring them setuid, or anything else
for that matter)

I've attached the 4k tar.bz2 of the glade project; sorry for the binary
attachment, but this is a mailing list and anything I send multiplies in
transfer, so 80k could easily become several hundred megs or so (400k
can become gigabytes on the LKML!).  I'm being nice to the server.

- --
All content of all messages exchanged herein are left in the
Public Domain, unless otherwise explicitly stated.

    Creative brains are a valuable, limited resource. They shouldn't be
    wasted on re-inventing the wheel when there are so many fascinating
    new problems waiting out there.
                                                 -- Eric Steven Raymond
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCOmEfhDd4aOud5P8RAnoyAJ9a8SEHDkXsgWU6CrMZlmw8V78ShgCeMNoL
LXF/vCVSrxDmJ6s6+nZ43LY=
=T5WS
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sec_center.tar.bz2
Type: application/x-bzip
Size: 4240 bytes
Desc: not available
Url : http://lists.ubuntu.com/archives/ubuntu-devel/attachments/20050318/8fb64037/sec_center.tar-0001.bin

More information about the ubuntu-devel mailing list