Linked by Thom Holwerda on Wed 5th Mar 2008 09:43 UTC, submitted by diegocg
Sun Solaris, OpenSolaris "OpenSolaris has launched a new project, Flexible Mandatory Access Control, to integrate the Flask/TE security scheme into their OS. This is the same underlying model implemented by SELinux, and follows other cross-platform Flask/TE integration projects such as SEDarwin and SEBSD. This is very exciting in terms of establishing compatible security across operating systems, particularly for Mandatory Access Control, which has traditionally been narrowly focused and generally incompatible. With FMAC, we're closer to seeing truly ubiquitous, cross-platform MAC security."
Thread beginning with comment 303482
To read all comments associated with this story, please click here.
Trusted Solaris?
by Bitterman on Wed 5th Mar 2008 11:29 UTC
Bitterman
Member since:
2005-07-06

I thought they already had trusted Solaris?
This was developed by the NSA why not port SElinux?
Is Selinux fundamentally flawed?

Reply Score: 1

RE: Trusted Solaris?
by Redeeman on Wed 5th Mar 2008 12:03 in reply to "Trusted Solaris?"
Redeeman Member since:
2006-03-23

Well lets just say that theres a reason we dont all wave SELinux flags... ;)

Reply Parent Score: 6

RE[2]: Trusted Solaris?
by Bitterman on Wed 5th Mar 2008 13:22 in reply to "RE: Trusted Solaris?"
Bitterman Member since:
2005-07-06

like what? any technical faults?
The only bad things about SElinux I hear are due to difficulty in rule building which although isn't meant for a joe desktop user the new building tools should be easy enough for a system admin to learn.
Mainly im trying to see what advantages this has over the current system.

Reply Parent Score: 1

RE: Trusted Solaris?
by Method on Wed 5th Mar 2008 13:25 in reply to "Trusted Solaris?"
Method Member since:
2006-05-15

It is a port of SELinux. Specifically a port of the pre-GPL version.

Trusted Solaris has been abandoned for various reasons (it was always way behind Solaris, hard to maintain, etc) and not all Sun customers were happy with trusted extensions.

Edited 2008-03-05 13:26 UTC

Reply Parent Score: 2

RE[2]: Trusted Solaris?
by binarycrusader on Wed 5th Mar 2008 14:12 in reply to "RE: Trusted Solaris?"
binarycrusader Member since:
2005-07-06

It is a port of SELinux. Specifically a port of the pre-GPL version.

Trusted Solaris has been abandoned for various reasons (it was always way behind Solaris, hard to maintain, etc) and not all Sun customers were happy with trusted extensions.


I don't know where you got your information, but it is wrong.

Contrary to your assertion that Trusted Solaris was abandoned, all of its technology has instead been integrated into the main release. In addition, if you actually take the time to read many discussions on opensolaris.org about the Trusted Extensions it brought, you would see that government customers especially liked them.

So, I assert that your source of information needs review.

Edited 2008-03-05 14:21 UTC

Reply Parent Score: 7

RE: Trusted Solaris?
by spikeb on Wed 5th Mar 2008 14:48 in reply to "Trusted Solaris?"
spikeb Member since:
2006-01-18

from what i can tell, they are implementing what one could call SESolaris...so it's not exactly a matter of what is wrong with selinux - this seems to be that, for solaris

Reply Parent Score: 4