...
- Remove "user" as you suggest, as it incorrectly suggests that
SELinux
operates at per-user granularity like DAC.
- Yes, SELinux runs as a security module in the address space of the
kernel.
- The policy is simply configuration data loaded into the security
server.
1st, tnx for your quick answer!
i have tried to improve the picture as you have suggested. what do you
think about this the following one?
IMPROVED PICTURE:
http://3.bp.blogspot.com/_OR3mMHaW6Iw/SgQyRwblcRI/AAAAAAAAAAc/C9HOanHgINs/s1600-h/sel_1_1_eng.png
The policy is now located "within" the security server, i hope this
one refelcts more the actual state.
--
Sebastian Pfaff
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
