| From: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Cc: | Joshua Brindle <method(at)manicmethod(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com>, Martijn van Oosterhout <kleptog(at)svana(dot)org>, KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com>, KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp> |
| Subject: | Re: [PATCH] SE-PgSQL/tiny rev.2193 |
| Date: | 2009-07-22 07:45:01 |
| Message-ID: | 200907221045.02005.peter_e@gmx.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Monday 20 July 2009 17:52:44 Joshua Brindle wrote:
> That is your (and the communities) prerogative. Linus wasn't very
> supportive of SELinux in the kernel either but it is the only way Linux got
> an EAL4+ LSPP evaluation for use in certain government systems. I
> personally would love to see an open source DBMS evaluated for systems like
> this because the current state of the art is fairly sad.
This would actually be a reasonable baseline to work against, if we define a
project goal to be satisfying this standard.
This is presumably the web site that describes this standard: http://www.niap-
ccevs.org/cc-scheme/pp/pp_os_ls_v1.b/ There I see
Succeeded By: pp_os_ml_mr2.0_v1.91
Sunset Date: 16 September 2007
And the successor document is vastly more comprehensive than implementing a
MAC scheme.
So how do we realistically get from here to there (and where is "there")?
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Fujii Masao | 2009-07-22 07:56:47 | Re: Non-blocking communication between a frontend and a backend (pqcomm) |
| Previous Message | Magnus Hagander | 2009-07-22 06:52:25 | Re: CommitFest 2009-07 - End of Week 1 |