Re: SELinux policy packaging

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 01/20/2017 05:18 PM, Adam Williamson wrote:

On Sat, 2017-01-21 at 01:13 +0100, Kevin Kofler wrote:

Only the NSA can think that
duplicating knowledge about ALL programs in the distribution in a single
central database (single point of failure) can ever scale.


By the way, this isn't true at all. Most packages can and, these days,
are encouraged to ship their own SELinux policies. In Fedora currently,
 I see:

copr-selinux
cockpit-selinux
drraw-selinux
gcl-selinux
websvn-selinux
totpcgi-selinux
vfrnav-selinux
dist-git-selinux

etc, etc, etc.



Really?  This is news to me (and I'm on the FPC).

I see these drafts:
https://fedoraproject.org/wiki/PackagingDrafts/SELinux
https://fedoraproject.org/wiki/SELinux_Policy_Modules_Packaging_Draft

but that's it.

--
Orion Poplawski
Technical Manager                     303-415-9701 x222
NWRA/CoRA Division                    FAX: 303-415-9702
3380 Mitchell Lane                  orion@xxxxxxxxxxxxx
Boulder, CO 80301              http://www.cora.nwra.com
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux