From owner-freebsd-security@FreeBSD.ORG Wed Mar 18 22:06:30 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C72ED106566C for ; Wed, 18 Mar 2009 22:06:30 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from cyrus.watson.org (cyrus.watson.org [65.122.17.42]) by mx1.freebsd.org (Postfix) with ESMTP id 97AC58FC12 for ; Wed, 18 Mar 2009 22:06:30 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from fledge.watson.org (fledge.watson.org [65.122.17.41]) by cyrus.watson.org (Postfix) with ESMTPS id DB3F246B49; Wed, 18 Mar 2009 18:06:29 -0400 (EDT) Date: Wed, 18 Mar 2009 22:06:29 +0000 (GMT) From: Robert Watson X-X-Sender: robert@fledge.watson.org To: Gabriele Modena In-Reply-To: <1fe1d5d60903181131n73580c78r1045c376874f4470@mail.gmail.com> Message-ID: References: <20090307183701.4b42830e@Picasso.Zahemszky.HU> <1fe1d5d60903181131n73580c78r1045c376874f4470@mail.gmail.com> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="621616949-101934716-1237413989=:99520" Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD and MAC X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Mar 2009 22:06:40 -0000 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --621616949-101934716-1237413989=:99520 Content-Type: TEXT/PLAIN; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8BIT On Wed, 18 Mar 2009, Gabriele Modena wrote: > 2009/3/17 Robert Watson : > >> Right now no one is maintaining the SEBSD module; this is unfortunate, but >> largely a property of people having enough time.  If this is something you >> can contribute to (or anyone else who's interested) I'm happy to provide >> pointers and advice. > > Could this be a valid Google Summer of Code project? > > I am about to write a proposal for this summer; my idea was related to > semantic file systems (in a way to combine my interest in kernel hacking to > my current research interest in information retrieval) and I am still > reading background literature about that. > > If there is interest from the community, SEBSD/TrustedBSD would be another > area I would like to work on. In the past I worked a bit (at a hobbyst > level) with SELinux and I have a background in security and (linux) kernel > hacking. > > In both cases I am interested in working on FreeBSD during the summer with > or without a Google's grant. Yes, I think this would be a good GSoC project, although it is quite large so I think you'd need to break it up into parts and plan not to complete all of them in one summer. I think the first step would be to slide the current SEBSD port forward to a newer FreeBSD version, then work towards updating the SEBSD parts from new Linux parts. It would also be worth chatting with NSA (et al) about whether non-GPL'd kernel parts are available. I know there's some on-going OpenSolaris porting work, and CDDL and GPL mix like water and oil, as I understand it, so there may be. I would be happy to lend technical advice to a project to do the above updates, and I suspect more hands would turn up once someone was clearly driving things forwards, GSoC project or not. The advice I'm giving all students, btw, is that if you're submitting a proposal based on one of our project ideas on the web page, consider submitting multiple proposals, as in previous years we've found ourselves having to pick just one of several promising students because they all picked the same idea and there was really room for only one instance of the project. Since you're talking about proposing ideas not on the list, that caution probably doesn't apply in the same way, but submitting multiple proposals (given enough time invested in each) likely will improve the chances that we can select you. Thanks, Robert N M Watson Computer Laboratory University of Cambridge --621616949-101934716-1237413989=:99520--