On Wed, 2007-04-18 at 00:12 +0200, Andi Kleen wrote: > > The vast majority of applications are not > > modified to be SELinux aware - only a small handful of security aware > > applications are modified. > > All applications that can edit /etc/resolv.conf? That's nearly > everything. You yourself gave the example; I'm not making anything up. > No - read my other mail on this subject. > > -Andi (sensing a loop in the thread -- things that already have been > discussed come back from the dead.) > > P.S.: If you want to loop further please drop me from cc. > I might be wrong, but I think that the loop is partially coming from you not understanding how policy normally handles labeling. There is some information at http://www.nsa.gov/selinux/papers/slinux/node16.html. Karl - To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
