sheldon is right. I'm one of the few people who actually do research on audit logs (at CERIAS, previously COAST).
Since most people who administer commercial Unix boxen don't enable them, many people don't even realize that some systems have rather verbose extensive logging mechanisms. The best that is out there is the Sun Basic Security Module (BSM) audit facility. It'll generate lots of logs and sure it takes a fair bit of resources not to mention disk space, but it allows you to run fairly sophisticated host-based intrusion detection systems and very good post-mortems!
Because of Linux's open nature, it would be very useful to have a verbose audit trail mechanism. This would allow security researchers like myself to base new systems on Linux more easily. (and yes, it would most likely end up being GPL'd!)
A journaling file system would be super neato as well. From a security standpoint, one could get a much better idea of what an attacker did to the system files even without running tripwire.
In closing, these are somewhat advanced features and there is no reason why they can not be added to Linux. I believe most of the commercial Unices had them added to an existing system as well. Well, Nuff said.
Well, I think lightness and form factor are the most important physical features of any tablet. I already use my PalmIII for reading novels from Project Gutenberg. I end up using the backlight quite a bit, but it works.
I am also convinced that to be practical, a tablet should have an open format so you can load whatever docs you want onto it. Who wants to have to pay for public domain books just because they are in someone else's format.
I have a few suggestions as a security researcher.
1. Policy - Impose a policy on all of these people running boxes.
2. Make maintenance a little easier - If you are mainly worried about Linux administration, create a mailing list that sends updates about patches, etc. to them regularly. Then go get the rpm's,deb's,.tgz's and mirror them locally. This helps reduce the time and trouble of keeping a system up to date.
3. Education - have a few seminars...stress good passwords, good administration, minimal services, etc.
Slashdot Mirror
Since most people who administer commercial Unix boxen don't enable them, many people don't even realize that some systems have rather verbose extensive logging mechanisms. The best that is out there is the Sun Basic Security Module (BSM) audit facility. It'll generate lots of logs and sure it takes a fair bit of resources not to mention disk space, but it allows you to run fairly sophisticated host-based intrusion detection systems and very good post-mortems!
Because of Linux's open nature, it would be very useful to have a verbose audit trail mechanism. This would allow security researchers like myself to base new systems on Linux more easily. (and yes, it would most likely end up being GPL'd!)
A journaling file system would be super neato as well. From a security standpoint, one could get a much better idea of what an attacker did to the system files even without running tripwire.
In closing, these are somewhat advanced features and there is no reason why they can not be added to Linux. I believe most of the commercial Unices had them added to an existing system as well. Well, Nuff said.
Well, I think lightness and form factor are the most important physical features of any tablet. I already use my PalmIII for reading novels from Project Gutenberg. I end up using the backlight quite a bit, but it works.
I am also convinced that to be practical, a tablet should have an open format so you can load whatever docs you want onto it. Who wants to have to pay for public domain books just because they are in someone else's format.
I have a few suggestions as a security researcher.
.tgz's and mirror them locally. This helps reduce the time and trouble of keeping a system up to date.
1. Policy - Impose a policy on all of these people running boxes.
2. Make maintenance a little easier - If you are mainly worried about Linux administration, create a mailing list that sends updates about patches, etc. to them regularly. Then go get the rpm's,deb's,
3. Education - have a few seminars...stress good passwords, good administration, minimal services, etc.
Good Luck
Note that in the article that Novell will not be releasing their "security related" protocols?
Hmmmm.... I wonder why? Security through obscurity ISN'T.