On Wed, 2013-11-13 at 14:32 +0100, Dominick Grift wrote: > On Wed, 2013-11-13 at 11:18 -0200, Leonidas Da Silva Barbosa wrote: > > > > > > Sorry, I did know sepermit yet, if I got the idea, it allows some SELinux > > user to login without password (:exclusive), and (:ignore) to avoid that > > seadmin users can login if system is in permissive mode, also allowing > > just one session by users, right? > > For sure it is a good one approach, becoming the environment more isolated > > and confined. > > > > These problems you found trying use sepermit in F19 also appears in new > > F20? Or , maybe is it a bug? I'll test it in F20. > > > > > > F19, i do not know if it still is problem in F{20,21} > > But yes, I think you have the idea roughly > > It is a neat functionality, especially when one relies heavily on > SELinux > By the way i added a demo vid about myadmins.sh to my youtube chan: https://www.youtube.com/watch?v=uZLf7yOah3Q -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux