Tim wrote:
Hello all, I was wondering, how can I change default location of SELinux policy from /etc/selinux/_policyname_ to some other path? What source codes should be modified for that? The reason to do that are: - I want to work with loadable policy modules --> that requires /etc/selinux/_policyname_ directory to be writable. - limitation of my filesystem having /etc directory (it is read-only filesystem) - unfortunately, I can not mount /etc into some other writable filesystem Kindest regards, Tim -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
FWIW SELinux reads the policy, then enforces what it reads. so if everything is (chmoded 0400) then you should be fine. but could be wrong; ;/ regards; Justin P. Mattock -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
