SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: Updated SELinux Release This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Colin Walters <walters_at_verbum.org> Date: Fri, 05 Nov 2004 10:11:01 -0500 On Fri, 2004-11-05 at 10:28 +0000, Luke Kenneth Casson Leighton wrote: > On Thu, Nov 04, 2004 at 11:06:06PM -0500, Colin Walters wrote: > > On Thu, 2004-11-04 at 13:15 +0000, Luke Kenneth Casson Leighton wrote: > > > > > default: no. > > > > Why not on by default, > > i would agree with stephen that it should be compiled in, > default options "selinux=no". I don't believe Stephen said that. He said that the performance hit in that case is just the LSM hooks. > that gives people the choice, It doesn't make sense to make security a "choice". The current Linux security model is simply inadequate. http://www.nsa.gov/selinux/papers/inevit-abs.shtml > without affecting performance. That's just a bug, and it's being worked on. Personally I don't notice any performance problems. > > with a targeted policy, for everyone? > > debianites have yet to be convinced of the benefits of > _anything_ to do with selinux [irrespective of whether they > are actually _aware_ of its benefits] That's what we're working on. -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Fri 5 Nov 2004 - 10:30:32 EST This message: [ Message body ] Next message: Karl MacMillan: "Re: dynamic context transitions" Previous message: Darrel Goeddel: "Re: dynamic context transitions" In reply to: Luke Kenneth Casson Leighton: "Re: Updated SELinux Release" Next in thread: Luke Kenneth Casson Leighton: "Re: Updated SELinux Release" Reply: Luke Kenneth Casson Leighton: "Re: Updated SELinux Release" Reply: Stephen Smalley: "Re: Updated SELinux Release" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom