[ubuntu-hardened] [PATCH] Initial policy load from load_policy
Jeff Schroeder
jeffschroed at gmail.com
Mon Nov 12 22:07:07 GMT 2007
On Nov 10, 2007 9:48 AM, Reinhard Tartler <siretart at ubuntu.com> wrote:
> Russell Coker <russell at coker.com.au> writes:
>
> > One thing that the Ubuntu people might consider is whether they want their
> > distribution to work on systems that don't have an initramfs. For example on
> > Cobalt hardware the kernel is loaded by the BIOS and there is no support for
> > loading an initramfs.
Canonical and the "Ubuntu Project" officially support 3 architectures:
x86, x86_64, Sparc 64 starting with Sun's Niagra chips (for servers only)
https://help.ubuntu.com/community/SupportedHardware
Someone who actually works for Canonical if I'm wrong please correct me here.
> For ubuntu, things like initramfs, udev and such are unlike in debian
> essential. You can of course still use sysvinit, which inherits the well
> known patches from debian for loading selinux policy without the need
> for an initramfs. However, this is not really officially supported.
Precisely!
> OTOH, the ubuntu-hardened team might decide that they want to provide
> support for sysvinit and initramfs-less systems. Opinions?
We should try to deviate from the "official Ubuntu" project as little
as possible
in all areas. What good is SE*buntu if it doesn't protect a common desktop or
causual server admin? Not that much in my book. Russel Coker has done
some great work on SELinux in Debian. Surely we will be able to leverage
some of that.
--
Jeff Schroeder
Don't drink and derive, alcohol and analysis don't mix.
http://www.digitalprognosis.com
More information about the ubuntu-hardened
mailing list