selinux原来是大名鼎鼎的NSA推出. NSA存在的目的就是收集分析情报, 而linux的一些特点, 估计是难倒了他们, 然后他们就堂而皇之的做了这么个陷阱. 鬼知道selinux里有多少后门. 之所以这么讲, 是有BSD先例的, 虽然都是些开源的软件, 但估计没谁会把代码从头检查到尾吧?In March 2001, the National Security Agency (NSA) gave a presentation about Security-Enhanced Linux (SELinux) at the 2.5 Linux Kernel Summit. SELinux is an implementation of flexible and fine-grained nondiscretionary access controls in the Linux kernel, originally implemented as its own particular kernel patch. Several other security projects (e.g. RSBAC, Medusa) have also developed flexible access control architectures for the Linux kernel, and various projects have developed particular access control models for Linux (e.g. LIDS, DTE, SubDomain). Each project has developed and maintained its own kernel patch to support its security needs.
话说, 那个, 若是linux更新的某个或某一些包被NSA或CIA的雇员弄了些额外的代码, 被发现的几率有多大? 非开源的软件呢?
http://www.nsa.gov/research/selinux/