Slashdot Mirror

← Back to Stories (view on slashdot.org)

HP To Sell Custom High-Security GNU/Linux Distro

Posted by timothy on from the what-about-settling-on-debian dept.

bc90021 writes: "CNET has this story about Hewlett Packard's new secure version of Linux. Using 2.4.2, it can supposedly detect attacks as they happen. (At $3,000, I think it should counter-attack, too.) It will be available on HP servers (duh), or on servers that pass the RedHat 7.1 server qualification tests."

4 of 227 comments (clear)

  1. Counter-Attack? by BiggestPOS · · Score: 5, Funny
    Your DHCP server detects a buffer-overflow attack from some jack-ass running WindowsXP. It goes into action, hitting bugtraq to find the latest exploits for the offending OS, found. It firewalls itself off, then passes the appropriate counter-measure information to your mail server. The mail server hacks the machine, shuts down the offending process, and patches the TCP/IP stack with one that DOESN'T have raw socket access. After only a few moments, one less XP machine is 1337.

    --
    What, me worry?
  2. HP-LX by MikeCamel · · Score: 5, Informative
    A search on HP's site yields a training course which has been available for around a month. The name of the product seems to be "HP-LX".

    Here are some of the issues listed on the page:

    • secure administration model
    • lockdown
    • process containment (compartmentalization)
    • file system protection (MAC)
    • auditing.
    So I presume that these will all be central to the new product. It seems fairly sensible - and it will be interesting to find out the details of exactly what they've implemented, and how.

  3. Service=money by peripatetic_bum · · Score: 5, Interesting

    In all honestly, I do hope the HP does well selling these $3,000 linux boxes. Not because of that its in there, but service/skill it took to actually took to configure the box right.
    (I assum of course that the box does what it says it does)

    Just like the thought that musicians will give their the music away (via the internet) but charge for real live preformances, the new economy (excuse me) may well be based very much on what the acutally person can do and what can not be replicated digitally. Ie, Doctors don't charge for the information they have and tell you, they charge for the skill in which they apply it to you. That is, all the information about treating asthma is in books, but I doubt ou would want to read the man page asthma and just treat yourself, but you pay the doctor to apply his skill to treat you.

    Thus HP is charging for the skill it takes to make more-secure internet boxes and perhaps, in this age, $3000 is a good start and in the future that skill may be worth even more.

    Anyway, thanks

    --

    Sigs are dangerous coy things

  4. Kernel Component of Secure Linux is Under GPL by Bruce+Perens · · Score: 5, Informative

    I am announcing this product in an hour. Shankland loves to jump the gun.

    The kernel component of HP Secure Linux is under the GPL license. All of the other Linux security vendors currently hide their security mods to the kernel in binary-only modules, IMO abusing the modules exception to the kernel. HP would rather not play games of getting around the GPL. The user-mode component of Secure Linux is not GPL-ed, but we understand that given the kernel drivers, programmers can roll their own.

    Thanks

    Bruce

    --
    Bruce Perens.