Changing the ingress/egress controls as described earlier turned out to be easier than I thought so I'm throwing this patch out so people can get a better idea of what I was talking about earlier. Please note that I'm only sending out this single patch as the rest of the patchset hasn't changed much (other than the removal of the new LSM hooks). After I've had a chance to test these changes a bit more I'll repost the full patchset. In the meantime, I've updated the lblnet-2.6_testing git tree with the latest bits and I can assure you that it at least boots and passes basic network traffic ... -- paul moore linux security @ hp -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
