Xen and Linux Memory Assignment BugsXen and Linux Memory Assignment Bugs
The Linux kernel has a number of code sections which look at the apparent size of the machine and determine what would be the best size for buffers. For physical[...]
Play Machine DowntimePlay Machine Downtime
From the 13th to the 14th of August my Play Machine [1] was offline. There was a power failure for a few seconds and the machine didn’t boot correctly. As[...]
AppArmor is DeadAppArmor is Dead
For some time there have been two mainstream Mandatory Access Control (MAC) [1] systems for Linux. SE Linux [2] and AppArmor [3]. In late 2007 Novell laid off almost all[...]
Switches and CablesSwitches and Cables
I’ve just read an amusing series of blog posts about bad wiring [1]. I’ve seen my share of wiring horror in the past. There are some easy ways of minimising[...]
Purging an RT DatabasePurging an RT Database
I had a problem where the email address circsales@washpost.com spammed a Request Tracker (RT) [1] installation (one of the rules for running a vaction program is that you never respond[...]
DNS Secondaries and Web SecurityDNS Secondaries and Web Security
At the moment there are ongoing security issues related to web based services and DNS hijacking. the Daily Ack has a good summary of the session hijacking issue [1]. For[...]
Ownership of the Local SE Linux PolicyOwnership of the Local SE Linux Policy
A large part of the disagreement about the way to manage the policy seems to be based on who will be the primary “owner” of the policy on the machine.[...]
SE Linux Policy Packaging for a DistributionSE Linux Policy Packaging for a Distribution
Caleb Case (Ubuntu contributer and Tresys employee) has written about the benefits of using separate packages for SE Linux policy modules [1]. Firstly I think it’s useful to consider some[...]
Australian Business and IT ExpoAustralian Business and IT Expo
I’ve just visited the Australian Business and IT Expo (ABITE) [1]. I haven’t been to such an event for a while, but Peter Baker sent a link for a free[...]
Starting to BlogStarting to Blog
The best way to run a blog is to run your own blog server. This can mean running an instance on someone else’s web server (some ISPs have special hosting[...]