SELinux enforcing for console activity
by Sven Vermeulen, post on Sat 30 October 2010I'm now able to boot into my system with SELinux in enforcing mode (without unconfined domains), do standard system administration tasks as root / sysadm_r (including the relevant Portage activities) and work as a regular user as long as I don't want to run in Xorg. I'm not going to focus …
Risk identification
by Sven Vermeulen, post on Thu 14 October 2010Risk identification is a difficult subject. Analysts need it to defend mitigation strategies or to suggest investments. Yet risk identification is often a subjective method, especially in the IT industry. How do you give a number on a certain risk? When do you believe that that number exceeds a threshold …
cvechecker 1.0 released
by Sven Vermeulen, post on Fri 01 October 2010With only a few small bugfixes between this release and the previous one, cvechecker 1.0 has finally been released. It runs fine on my few systems and I have not gotten any bugreports from other users anymore. It can definitely need more rules to identify installed software (those rules …
SELinux quicky
by Sven Vermeulen, post on Tue 14 September 2010I've been using SELinux for a few days now (in permissive mode, just to get to know things) and have learned a few interesting commands (or other nice-to-know's) for using SELinux. Since I'm going to forget those the moment all is running well, I'll "document" them here ;-) I'm not going …
Switching to hardened
by Sven Vermeulen, post on Sun 12 September 2010Yesterday (and this night) I successfully converted my system to a Gentoo Hardened system. In my case, this currently means that PaX has been enabled and I am currently running the system (which is an x86_64 laptop) with SELinux in permissive mode (so it won't enforce the policies yet, but …
prezi presentations
by Sven Vermeulen, post on Fri 10 September 2010While doing some research on current rich internet applications / web application platforms, I discovered an online presentation site/tool called Prezi. This online application allows you to make dynamic presentations differently from the standard presentation software like OpenOffice.org's Impress. A nice example can be found online as well of …
cvechecker 0.6 released
by Sven Vermeulen, post on Wed 08 September 2010This release makes me quite happy, because it resolves one major PITA I had (performance), but you know how things go. If it works fine for the developer, it's probably an abomination for the rest of the world. Anyhow, cvechecker version 0.6 is now available. It improves reporting performance …
Linux Sea last content chapter
by Sven Vermeulen, post on Sat 04 September 2010The last chapter in Linux Sea focuses on Using A Shell. This seems to me like a nice last chapter, as it confronts the user with the exciting world of shell scripts. I hope that the chapters in the book are sufficiently stuffed so that beginners (who are not afraid …
devops - how hard can it/it can be
by Sven Vermeulen, post on Sat 04 September 2010Dieter made a good reference to devops and the open source community and (correctly) points out that, even in a more collaborative scene such as the free software communities', there is still distinction between development and operations. And it isn't hard to see commonalities between enterprise organizations and free software …
Linux Sea: log file management and backups
by Sven Vermeulen, post on Thu 02 September 2010I've added two more chapters to the Linux Sea book. The first one is about Log file management, the second one about Taking Backups. They're far from finished, but I thought that those two topics are important for day-to-day Gentoo usage and shouldn't be left out of the Linux Sea …