Re: [Linux-ima-user] Chain of trust in IMA and IMA for Ubuntu!

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

On Sun, Jan 12 2014 at 07:11, Mimi Zohar wrote:
> On Thu, 2014-01-09 at 20:41 +0100, hassan Ahamad wrote: 

>> A second question: is there IMA package available for ubuntu and SE Linux?
>
> For measurement, the kernel needs to be configured with CONFIG_IMA
> enabled.  The builtin policy 'ima_tcb' needs to be specified on the boot
> command line.  There are dracut patches for loading a different policy,
> but unlike for appraisal, no other packages are required.

IMA will be enabled in the ubuntu kernel starting with 14.04 (due to be released in April). You'll still need to include ima_tcb on the boot command line.

Cheers,
peter