1 - 2 min read
Jun 08, 2002
EnGarde walked away with our Editor's Choice award thanks to the depth of its security strategy, which covers nearly all the bases. Everything from the low-level mechanisms (binary integrity checking and stack protection) to high-level usability issues (including an excellent patching interface) demonstrate the serious effort the Guardian Digital crew has invested in EnGarde. . . .
EnGarde walked away with our Editor's Choice award thanks to the depth of its security strategy, which covers nearly all the bases. Everything from the low-level mechanisms (binary integrity checking and stack protection) to high-level usability issues (including an excellent patching interface) demonstrate the serious effort the Guardian Digital crew has invested in EnGarde.
ESL's Guardian Digital Secure Network provides a textbook example of an ideal patching interface--automatic notification, simplified downloading and straightforward descriptions are all included. We were up to current patch levels in a matter of minutes.
EnGarde holds up well in the line of fire, escaping without a scratch on the ptrace vulnerability. In fact, the company was able to say in an advisory: "Please note that EnGarde Secure Linux does not ship with the 'newgrp' utility, nor does it ship with any other setuid/setgid executables, which can be used to exploit this bug. Thus, EnGarde Secure Linux is not vulnerable to the ptrace flaw."
The link for this article located at Network Computing is no longer available.