Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing ListRe: Debian SE Linux ?
From: Russell Coker <russell_at_coker.com.au>
Date: Thu, 20 Dec 2001 12:43:33 +0100
I am still (slowly) working on this. I hope to have all the basics packaged by the end of the week...
> I'm not sure what you mean when you say Having the policy on the initrd is painful. I think that the best solution is to turn on the SE functionality after the root FS has been mounted (if they can crack your machine at initrd time you're pretty much stuffed anyway). Stephen, I got the impression from a previous message that such delayed startup of SE functionality is possible with the CONFIG_SECURITY_SELINUX_DEVELOP option, but I haven't looked into that yet.
> > Looking at the way SELinux works, I assume I will have at least to alter -- http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/projects.html Projects I am working on http://www.coker.com.au/~russell/ My home page -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.Received on Thu 20 Dec 2001 - 07:00:51 EST |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |