I have been trying to get my openSUSE desktops to play nice in our company's increasingly draconian security system. Every time I think I have made progress, there is another obstacle. Case in point. Our company has decided that Cisco will be the security provider. This includes using Cisco routers and Cisco software. In software, they are using Cicso's ICE, Umbrella, and AMP. I have been working with IT to see how our openSUSE desktops can play along with this. Things looked hopeful. Until they provided me with the AMP package. It is a RPM designed for use on Red Hat systems. Of course, I had a peek around to see what was really Red Hat specific. With a hope that it was standard and could be run on openSUSE. So close. But there were two obstacles: 1. It likes to keep the virus database up-to-date. That is, of course, needed. Unfortunately, it uses a very old RPM version/library to manage installed packages. That version is not compatible with the newer version openSUSE uses. I think it could be possible to get around that. Not sure. But maybe. 2. It installs some drivers. This requires that the drivers match the operating system version. AMP only supports a very old kernel (3.10.0 in RHEL 7, which Red Hat seems to patch with security fixes). This is unfortunate. And it need not be done this way (NVIDIA also installs drivers - but their method supports more OS versions by install-time linking of modules for the current kernel). This is the show stopper. I see no way to get around this incompatibility. Also RHEL is not really a desktop release. It was originally released in Oct of 2015. I have no interest in working in an old desktop. I guess I don't have a real question. Other than why Linux is still being marginalized by major companies? Surely I'm not the only user in a corporate environment where the security tools are mandated company-wide. It's not enough to claim that you have installed something at least equivalent. They only trust what they have selected. AMP, as it turns out, seems to use ClamAV. But it adds an interface that allows corporate monitoring that all is working as expected. With almost 40000 people, I cannot blame the security guys for wanting this kind of information. I guess it would take convincing from companies like SUSE (or a consortium of Linux companies working as a single entity) to get Cisco to consider proper Linux desktop support (maintained by Cisco in their own OBS environment to allow packages for multiple distros?). The humorous thing is that with Red Hat's acquisition by IBM, I think IBM's security stuff will be the preferred solution for Red Hat users. Cisco will surely see a decrease in Red Hat sales. And from that decide that Linux is not worth the effort. Some days I just feel too old for all this... -- Roger Oberholtzer -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org