As first discussed on SULinux's front page, SULinux is a version of RedHat Linux with added packages to fully enable your system to participate in the Stanford environment. Many of these packages, such as OpenAFS and are tied to the latest available packages and are thus not useful unless you install all the latest updates. SULinux is in every way RedHat Linux, but with the latest Redhat-provided updates readily available and easy to maintain. Most of the additional functionality is optional and configured via the /usr/bin/sulinux configuration tool provided in our packages.
Here are further package specific details
- sulinux - This package depends on all the other packages, and includes
the sulinux configuration tool that is activated during the first
reboot to guide you through Stanford network system configuration and security settings.
- libsafe - Libsafe is a wrapper for C function calls like strcpy()
and sprintf(). Libsafe protects against buffer overflows (the most
common type of exploit). Libsafe also notifies the root account
and logs via syslog all buffer overflow attempts. More information
about libsafe can be found at Avaya's Libsafe website.
- kerberos - The kerberos package makes SULinux kerberos aware.
After installation, your machine will only allow safe, encrypted connections
to your machine via Klogin and KTelnet if you correctly configure your SRVTAB. This package also provides links to the necessary kerberos clients to access other kerberized hosts.
- AFS - The AFS package is from OpenAFS.org. Stanford then adds
appropriate configuration information to connect your system to
the campus-wide AFS system.
|