Mike McGrath wrote:
Dan is requesting a xen instance for use for this project.
Questions I have:
There's no way to integrate this into our current environment? All
information we get from the internet is random data :-)
Can you give us a better idea of how this works on the back end? What
would we need as far as backups go, space, etc?
No backups, Space would simply be the size of the Minimal OS (Only need
httpd on a server platform.) plus a small amount (< 100 MB) for storing
and processing log files.
http://milkbones.boston.devel.redhat.com/setroubleshoot
Is what I am looking to run.
df on milkbones shows
df
Filesystem 1K-blocks Used Available Use% Mounted on
/dev/mapper/VolGroup00-LogVol00
3777168 2271320 1310880 64% /
/dev/xvda1 101086 18304 77563 20% /boot
tmpfs 256000 0 256000 0% /dev/shm
Which is a heck of a lot more space then what I need.
-Mike
------------------------------------------------------------------------
Subject:
[Fedora Project Wiki] Update of "Infrastructure/RFR/SELinux" by
DanielWalsh
From:
fedorawiki-noreply@xxxxxxxxxxxxxxxxx
Date:
Fri, 02 Mar 2007 16:57:53 -0000
To:
fedorawiki-noreply@xxxxxxxxxxxxxxxxx
To:
fedorawiki-noreply@xxxxxxxxxxxxxxxxx
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Fedora Project Wiki" for change notification.
The following page has been changed by DanielWalsh:
http://fedoraproject.org/wiki/Infrastructure/RFR/SELinux
New page:
= Project Sponsor =
Name: Daniel Walsh
Wiki Name: SELinux Troubleshoot
Fedora Account Name: Dan,Walsh
Group: Red Hat Engineering
Infrastructure Sponsor:
== Secondary Contact info ==
Name:
Wiki Name:
Fedora Account Name:
Group:
== Project Info ==
Project Name: SELinux Troubleshoot Tool
Target Audience: Fedora System Administrators
Expiration Date (required): No Experation.
Description/Summary:
Setup a Xen Instance running a web server to help Fedora Users diagnose SELinux AVC messages
Project plan (Detailed):
I would like to setup a Xen instance running an apache web server, that is totally locked down by SELinux. This web server
would allow users to upload SELinux audit logs. The logs would be run through the SELinux Troubleshoot Database and suggested
fixes would be displayed to the user. Since this machine would be taking random data from the internet, I do not believe this
machine should be running any other services and will be locked down with the tightest possible SELinux policy.
Goals:
== Specific resources needed ==
FC6 or later xen instance.
== Additional Info (Optional) ==
