SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: semanage non MLS breakage This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] From: Stephen Smalley <sds_at_tycho.nsa.gov> Date: Wed, 22 Feb 2006 10:49:25 -0500 On Sun, 2006-02-19 at 12:17 -0500, Ivan Gyurdiev wrote: > > It's an invalid context, I don't think there is anything you can* do* > > except fatally error. Consider what would happen if there was a proper > > MLS context with multiple levels on an MCS policy... > Well, in that case, patch attached. Also fixes printing of mls_range in > the error case for seuser_validate. > Applies on top of the previous one. > > That leaves the semanage tool to audit and fix for non-MLS issues. Merged both patches (libsepol 1.11.19, libsemanage 1.5.29). As noted by Ivan, semanage still needs to be modified to not presume MLS. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Wed 22 Feb 2006 - 10:43:53 EST This message: [ Message body ] Next message: Timothy R. Chavez: "Re: [RFC][PATCH] collect security labels on user processes generating audit messages" Previous message: Stephen Smalley: "Re: [PATCH] context based audit filtering (take 3)" In reply to: Ivan Gyurdiev: "Re: semanage non MLS breakage" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom