-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I have sucked it up over the last couple of days and have cleaned up most of the MLS avcs in Fedora 11. It now boots up and I can log in in enforcing mode. I would prefer to work with the F11 policy, although this can safely be installed on an F10 system. Tryout 3.6.3-5.f11 I gave the kernel_t the privs to run plymouth, it does not make much sense to prevent kernel_t from any of the accesses it needed. Also wrote most of the policy for wm_t. Some problems like use of fusermount are going to be tougher to decide on what the right thing to do is. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkl3kf0ACgkQrlYvE4MpobNMYwCeOHaZ3GokeMzg8oRrM8vU/S6Q sqAAoNlF+b4v0c3pnd7BPb8ljzwMB3Vj =WkHm -----END PGP SIGNATURE----- -- fedora-selinux-list mailing list fedora-selinux-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-selinux-list
