Slashdot Mirror

Since the main body of the Slashdot article pointed to cnet's home page instead of the actual story, I thought I'd provide the link.

Crispin
--------
CTO, WireX
Immunix: Free Security Hardened Linux OS

Here is a collection of pointers (some already listed):

http://bastille-linux.sourceforge.net/

http://dwheeler.com/ secure-programs/Secure-Programs-HOWTO.html

http://i30www.ira.uka.de/SawMill/index. html

http://immunix.org/

http://medusa.fornax.sk/

http://oss.sgi.com/projects/ob1/index.ht ml

http://soledad.cs.ucdavis.edu/

http://users.ox.ac.uk /~mbeattie/linux/ANNOUNCE.mac30-20000214

http://www.data.slu.se/bifrost/index.en .htm

http://www.guug.de/~winni/posix.1e/

http://www.lids.org/

http://www.rsbac.de/rsbac/

http:// www.securecomputing.com/archive/press/2000/nsa_faq _secure_linux.html

http://www.trinix.org

There are two projects you may be interested in. The first is the Linux BSM project at U.C. Davis (home of an excellent security research lab by the way). The project's goal is to provide TCSEC-compliant auditing for Linux. They appear to have made reasonable progress. The last update to the web page was Feb. 15.

The second project you may want to consider is that SGI is building an "orange book" Linux, with a goal of C2 by October, and B1 by next spring.

Note that this question was posted to Slashdot last year so you probably want to go check out the responses there.

Finally, while I'm here, I'll plug my own security-hardened Linux distro: Immunix. Immunix is not TCSEC compliant or anything like that. Rather, it is designed to be extremely difficult to break into, while preserving a high degree of Linux compatibility. Currently, it is just Red Hat hardened with StackGuard, but we will be releasing additional security technologies shortly.

Crispin
-------
CTO, WireX Communications, Inc.
Immunix: Free hardened Linux

There are two projects you may be interested in. The first is the Linux BSM project at U.C. Davis (home of an excellent security research lab by the way). The project's goal is to provide TCSEC-compliant auditing for Linux. They appear to have made reasonable progress. The last update to the web page was Feb. 15.

The second project you may want to consider is that SGI is building an "orange book" Linux, with a goal of C2 by October, and B1 by next spring.

Note that this question was posted to Slashdot last year so you probably want to go check out the responses there.

Finally, while I'm here, I'll plug my own security-hardened Linux distro: Immunix. Immunix is not TCSEC compliant or anything like that. Rather, it is designed to be extremely difficult to break into, while preserving a high degree of Linux compatibility. Currently, it is just Red Hat hardened with StackGuard, but we will be releasing additional security technologies shortly.

Crispin
-------
CTO, WireX Communications, Inc.
Immunix: Free hardened Linux

There are two projects you may be interested in. The first is the Linux BSM project at U.C. Davis (home of an excellent security research lab by the way). The project's goal is to provide TCSEC-compliant auditing for Linux. They appear to have made reasonable progress. The last update to the web page was Feb. 15.

The second project you may want to consider is that SGI is building an "orange book" Linux, with a goal of C2 by October, and B1 by next spring.

Note that this question was posted to Slashdot last year so you probably want to go check out the responses there.

Finally, while I'm here, I'll plug my own security-hardened Linux distro: Immunix. Immunix is not TCSEC compliant or anything like that. Rather, it is designed to be extremely difficult to break into, while preserving a high degree of Linux compatibility. Currently, it is just Red Hat hardened with StackGuard, but we will be releasing additional security technologies shortly.

Crispin
-------
CTO, WireX Communications, Inc.
Immunix: Free hardened Linux

Since I am an employer seeking Linux staff, I thought I'd provide my input. I agree with much of the advise in the article.

However, at the end they recomend four job portals: Linux.com, Linux Today, User Friendly's GeekFinder and Linux.org.au. I agree with the first two, and (since I'm in North America) have no valid opinion on Linux.org.au.

The problem with Geek Finder is that it is really just a front for Dice.com. Unlike all the other resources mentioned, dice.com charges employers for listings, instead of being community-based and advertiser-supported.

Instead, I would recomend the following additional job portals, where I have actually posted jobs:

• Superexpert.com: not great, but it does host linux jobs.
• JustLinux: a smaller Linux portal, with a nice jobs page.
• Free Software Jobs Page: This is the GNU jobs page. It is strictly for free software jobs, so only hard-core open source jobs get posted there.

Finally, WireX's research jobs are here and our production jobs are here.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc.
Immunix: Free Hardened Linux Distribution
Jobs!

Since I am an employer seeking Linux staff, I thought I'd provide my input. I agree with much of the advise in the article.

However, at the end they recomend four job portals: Linux.com, Linux Today, User Friendly's GeekFinder and Linux.org.au. I agree with the first two, and (since I'm in North America) have no valid opinion on Linux.org.au.

The problem with Geek Finder is that it is really just a front for Dice.com. Unlike all the other resources mentioned, dice.com charges employers for listings, instead of being community-based and advertiser-supported.

Instead, I would recomend the following additional job portals, where I have actually posted jobs:

• Superexpert.com: not great, but it does host linux jobs.
• JustLinux: a smaller Linux portal, with a nice jobs page.
• Free Software Jobs Page: This is the GNU jobs page. It is strictly for free software jobs, so only hard-core open source jobs get posted there.

Finally, WireX's research jobs are here and our production jobs are here.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc.
Immunix: Free Hardened Linux Distribution
Jobs!

Since I am an employer seeking Linux staff, I thought I'd provide my input. I agree with much of the advise in the article.

However, at the end they recomend four job portals: Linux.com, Linux Today, User Friendly's GeekFinder and Linux.org.au. I agree with the first two, and (since I'm in North America) have no valid opinion on Linux.org.au.

The problem with Geek Finder is that it is really just a front for Dice.com. Unlike all the other resources mentioned, dice.com charges employers for listings, instead of being community-based and advertiser-supported.

Instead, I would recomend the following additional job portals, where I have actually posted jobs:

• Superexpert.com: not great, but it does host linux jobs.
• JustLinux: a smaller Linux portal, with a nice jobs page.
• Free Software Jobs Page: This is the GNU jobs page. It is strictly for free software jobs, so only hard-core open source jobs get posted there.

Finally, WireX's research jobs are here and our production jobs are here.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc.
Immunix: Free Hardened Linux Distribution
Jobs!

Since I am an employer seeking Linux staff, I thought I'd provide my input. I agree with much of the advise in the article.

However, at the end they recomend four job portals: Linux.com, Linux Today, User Friendly's GeekFinder and Linux.org.au. I agree with the first two, and (since I'm in North America) have no valid opinion on Linux.org.au.

The problem with Geek Finder is that it is really just a front for Dice.com. Unlike all the other resources mentioned, dice.com charges employers for listings, instead of being community-based and advertiser-supported.

Instead, I would recomend the following additional job portals, where I have actually posted jobs:

• Superexpert.com: not great, but it does host linux jobs.
• JustLinux: a smaller Linux portal, with a nice jobs page.
• Free Software Jobs Page: This is the GNU jobs page. It is strictly for free software jobs, so only hard-core open source jobs get posted there.

Finally, WireX's research jobs are here and our production jobs are here.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc.
Immunix: Free Hardened Linux Distribution
Jobs!

I agree with many of the other posters; most of Bret's frustrations appear to be self-authored. Approach a hardware vendor with an in-your-face attitude, refer to products as "lobotomodems", and you should EXPECT to get the brush-off. There are advanced techniques like "tact" and "diplomacy" that need to be employed to successfully convince a vendor to invest effort (i.e. money) in supporting alternative systems.

Furthermore, the whining about the isolation of the Linux Business Expo is also invalid. We were there selling our Linux-based product and promoting our free security portal and it was our choice to place our booth in the Linux Business Expo. Anyone who wanted to be in mainland could have chosen to do so.

Crispin