Re: Re: DNS Logging with Selinux enabled

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Robert Nichols wrote:
> When I asked about a similar problem a while back, the
> SELinux folks
> told me that bind-chroot was not supported under SELinux
> because
> SELinux already provides better protection.
> 

That is wrong. Every release of Fedora comes out and people ask how to configure bind to work in a chroot with selinux enabled. As Fedora is a
testbed for upstream, we should have these things ironed out. Possibly having a separate SELinux/Docs mailing list means they may not be aware of what is going on in the mainstream. 

Some of the old Fedora Docs are informative. Even a work in progress like
http://fedoraproject.org/wiki/Docs/Drafts/AdministrationGuide/Servers/DNSBIND/BINDChroot

shows bind-chroot can work with SELinux



      

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux