U.S. Navy Works To Improve Linux Security 20
MrPhiles writes "Just saw an article at Washington Technology talking about how the Navy is developing a Secure Auditing tool for Linux. I think it's cool that government agencies are taking steps to obtain credentials necessary for open source use in high-security environments."
Re:Great but (Score:5, Informative)
The NSA released documents on how to secure WinXP and Win2K server not too long ago- it was even posted on
Re:what is the kernel lacking? (Score:5, Informative)
Attend, my son
The key word seems to be "forensic". They want to replace syslog with something sufficiently tamper-resistant to persuade a judge that it's good enough for legal evidence. There are already some clever hacks for this, such as hiding the real syslog process and leaving a fake one around for an intruder to disable or corrupt.
Re:what is the kernel lacking? (Score:3, Informative)
This isn't the sort of thing normal people will want or need on their Linux systems, but in some environments (military, government) it's really important. And you could, of course, use it to create a honeypot, if you're into that sort of thing.