[cap-talk] Bundling effords, choosing a platform ? (Plash: Empowering Security)
toby.murray at comlab.ox.ac.uk
Mon Apr 7 03:28:55 CDT 2008
On Mon, 2008-04-07 at 09:36 +0200, Rob Meijer wrote:
> Reading your posting, especially this section on the target platform made
> me wonder if one of the reasons that open source efforts on POLP/POLA are
> picking up could be in the targeting of platforms, and usage of different
> ways of distributing to the same platforms.
I think the primary reason is visibility.
> Thus if we would want to create a wider platform for POLP/POLA, possibly
> we would want, as a community, choose a common target OS/distribution to
> 'safe' :-), or even ultimately even to provide migration paths to a
> completely POLA based OS.
The Plash approach can be specialised for any package system similar to
Debian's -- e.g. RPM/Yum or others. (I'm not familiar with the SuSE
packaging system but presumably it's similar to the others.)
I don't feel one needs to pick a particular distribution unless your
goal is to take that distribution and customise it, repackaging it as a
POLA-centric Linux. (This is not a new idea, see e.g. plans along this
direction for Plash itself: http://plash.beasts.org/wiki/MiniDistro )
More information about the cap-talk