Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing ListRe: latest diff
From: Christopher J. PeBenito <cpebenito_at_tresys.com>
Date: Sat, 19 Mar 2005 11:14:50 -0500
I don't remember why hostname and consoletype were added in the first place, but a quick look through them makes me think that its so we don't have to give sys_admin capability to initrc_t when these programs are run from init scripts. Sys_admin is a huge set a privileges, so I'd say its worthwhile to keep them around.
> plain text document attachment (diff) Shouldn't this go in the ifdef(`klogd.te',`',` block? Its already there for syslogds that also do the klogd functions, like syslog-ng. In fact, I think that block was originally added for syslog-ng. That should eliminate the need for a boolean too. -- Chris PeBenito Tresys Technology, LLC (410) 290-1411 x150 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.Received on Sat 19 Mar 2005 - 11:14:14 EST |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |