On Mon, 2009-05-25 at 14:01 +0100, Nigel Rumens wrote: > Thanks. I will do just that. > > In the meantime though would it be possible to create a local policy > module to allow this access? (with audit2allow?) Maybe even limiting it > to just a particular set of processes by creating a new label and > labeling the relevant executables? Yes, you should be able to do that. Prior discussions of sctp and selinux: http://marc.info/?l=fedora-selinux-list&w=2&r=1&s=sctp&q=b I don't see sctp support on the selinux kernel todo list. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
