Is there some way to turn of the dontaudit w/ the refpolicy and a module policy build. make enableaudit seems to only change the base policy, and not any of the policies that actually do anything. This is with the refpolicy selinux-refpolicy-sources-20071214-1 running on RHEL5. For some reason, when the policy is enforced, I can't su from a staff_r user, yet when I try with enforcing=0 I don't get any audit messages, and I'm not really comfortable modifying every user oriented admin modules to remove the dontaudit rules. doing so in su.te helped find a few things, but I'm not sure what's blocking it now. Sodd's Second Law: Sooner or later, the worst possible set of circumstances is bound to occur.
Attachment:
signature.asc
Description: This is a digitally signed message part
