SecureCon LectureSecureCon Lecture
On Thursday at Secure Con [1] I gave a lecture about SE Linux that went according to plan, and they gave me a nice bottle of Penfolds Shiraz afterwards (thanks[...]
SecureCon TutorialSecureCon Tutorial
My SecureCon tutorial went quite badly today. After having network problems and having both the Xen servers crash for no apparent reason I had to give up and give an[...]
Xen for TrainingXen for Training
I’m setting up a training environment based on Xen. The configuration will probably be of use to some people so I’m including it below the fold. Please let me know[...]
Squid and SE LinuxSquid and SE Linux
Is Squid not returning some data you need on a SE Linux system? The default configuration of the SE Linux policy for Squid only allows it to connect to a[...]
Increasing Efficiency through Less WorkIncreasing Efficiency through Less Work
I have just read an interesting article titled Why Crunch Mode Doesn’t Work [1] which documents the research on efficiency vs amount of time spent working (and by inference amount[...]
Load AverageLoad Average
Other Unix systems apparently calculate the load average differently to Linux. According to the Wikipedia page about Load(computing) [1] most Unix systems calculate it based on the average number of[...]
HalloweenHalloween
Yesterday I received an unsigned notice in the mail from some residents of an area comprising my street and an adjacent one. They advised me that their children were going[...]
SecureCon 2007SecureCon 2007
I am running a tutorial and giving a talk about SE Linux at SecureCon 2007 [1]. The tutorial will go for 3 hours on Wednesday the 7th of November and[...]
New SE Linux Play Machine OnlineNew SE Linux Play Machine Online
After over a year I have finally got a SE Linux Play Machine online again. The details for logging in are at this link [1]. I’ve created T-shirt and mug[...]
Xen and SecurityXen and Security
I have previously posted about the difference between using a chroot and using SE Linux [1]. Theo de Raadt claims that virtualisation does not provide security benefits [2] based on[...]