Re: NSA software in Debian

2014-01-24 Thread Peter Lawler
On 25/01/14 00:17, Andrew McGlashan wrote: It's virtually impossible to know one way or another, we just have to have some faith and trust (perhaps too much of one or both). FWIW, agreed. To lightly misquote a network engineering mate of mine... "Not entirely sure why anyone (unquestionably

Re: NSA software in Debian

2014-01-24 Thread Andreas Kuckartz
Marko Randjelovic: > On Wed, 22 Jan 2014 12:24:27 +1100 > Russell Coker wrote: > >> The possibility of LSM hooks being used to hide a kernel rootkit is >> widely cited. But most sysadmins aren't going to find a kernel >> rootkit anyway so using a non-LSM security system for that reason is >> trad

Re: NSA software in Debian

2014-01-24 Thread Andrew McGlashan
Hi, On 19/01/2014 6:30 AM, Marco Saller wrote: > i am not sure if this question has been asked or answered yet, please do not > mind if i would ask it again. > Is it possible that the NSA or other services included investigative software > in some Debian packages? I've read all the posts so far

Re: NSA software in Debian

2014-01-24 Thread Marko Randjelovic
On Thu, 23 Jan 2014 15:41:57 +0100 Kevin Olbrich wrote: > >> A followup there links to the following bug, "linux-2.6: [RFC] Add a grsec > >> featureset to Debian kernels": > >> > >> > > > > This would of course be the real solution.

Re: NSA software in Debian

2014-01-24 Thread Marko Randjelovic
On 22 Jan 2014 20:40:12 +0100 "Andreas Kuckartz" wrote: > Marko Randjelovic: > > Octavio Alvarez wrote: > >> I wouldn't worry about SELinux specifically. > > > > As I already pointed out, there is something: > > http://lists.debian.org/20140120005556.612de...@eunet.rs > > And Russel Coker care

Re: NSA software in Debian

2014-01-24 Thread Marko Randjelovic
On Wed, 22 Jan 2014 12:24:27 +1100 Russell Coker wrote: > The possibility of LSM hooks being used to hide a kernel rootkit is widely > cited. But most sysadmins aren't going to find a kernel rootkit anyway so > using a non-LSM security system for that reason is trading off the real > benefit

Re: [SECURITY] [DSA 2848-1] mysql-5.5 security update

2014-01-24 Thread Håkan Lund
Jag känner inte igen användarnamnet så jag tror inte att jag är den slyldige. Best regards, Håkan Lund | Server Administrator Freespee Mail | hakan.l...@freespee.com Freespee Voice | +46770350047 freespee.com - When Advertising is just math, we make sure no data is missing On Thu, Jan 23, 2