-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Joe Nall wrote: > Why not just decouple the ports from the application by giving them > names like port8080_t? This would allow multiple policies to be written > to manage that resource, only one of which should be active at a time. > I think the real issue is the assumption that only one application will > own ports like 80, 8080, 443 and 8443. > > joe I think the problem here is 65000 types. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkfP/U8ACgkQrlYvE4MpobOkSACeO4El2XE56Vdunau/rTpggGjH y3gAoMZ3c2QBfO37XKZg5p6jGUt5an/D =UUGs -----END PGP SIGNATURE----- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
