Anyone have any info on "Security Enhanced Linux"? (NSA distro)

Hiya:

Browsing for a 'nix based firewall router solution, I came across this
distro on linux org, in their security section - it's called literally
Security Enhanced Linux, and states that they are put out by the NSA and
the University of Utah. I looked at their home page
(http://www.nsa.gov/selinux/) and it looks to be a locked down (in terms
of user access, minimalist) distro. They do have an FAQ there and source
code, along with several versions to dl.

One the one hand it would be pretty cool to have my firewall built by the
NSA. On ther other hand, it would suck to have my firewall built by the
NSA :) I was wondering if anyone knows anything about this or has tried
it. I don't have a buncha secrets to keep so I am not paranoid about it,
but it seems to be a bit prudent around before I blindly trust Big Brother
with my packets. thanks for any insight you can provide.

--
Replace spam with news to contact me.

Snake Plissken <spam@takeoutthispart.level2.org> wrote:

: Browsing for a 'nix based firewall router solution, I came across this
: distro on linux org, in their security section - it's called literally
: Security Enhanced Linux

This may not be what you want for a firewall. It's an attempt to make
linux a trusted OS with proper separation of privilages i.e. no all-powerfull
root. It's a PITA to configure.

If you want a more vanilla secure linux see http://www.openwall.com or
try the grsecurity kernel patches.

Arthur