[tptacek]

I simultaneously agree with the premise that NSA is secured incompetently and also disagree with the idea that everything is at a singe lowest clearance level, which is the opposite of how things have been described to me by people who worked there.

[languagewars]

My impression is that they have the NIH and refuse to use standard LSPP in favor of FLASK. They take this so far that they accept no feedback from the SELinux community. While they may have analyzed all the great reasons not to use every competitor, they probably lack oversight and critical evaluation of the EOU problems that causes, leading to less practical security than those using off the shelf software with proper oversight.