National Security Agency issues Third Public Release of SELinux
Source: Security News Portal - SNPortal
The third public release of the LSM-based SELinux prototype has been issued by the NSA. This release contains several bug fixes and improvements to both LSM and SELinux and is based on the lsm-2001_10_11 patch against kernel 2.4.12. See selinux/ChangeLog for a detailed summary of the changes. A few highlights are listed below:
Added support for stacking the capabilities security module.
Added domain for ssh client program.
Added contributed named and gdm domains.
Added more permissions to the example policy.
Changed extended IPC calls to work when built as a separate module.
Added run_init utility and domain for running init scripts in the correct context.
Updated to 2.4.12 (with parport fix).