-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
mlsconstrain { tcp_socket udp_socket rawip_socket } node_bind
(( h1 dom h2 ) or ( t1 == mcsnetwrite ));
For some reason we do not do this in MLS policy. Does anyone know why
we don't do this for MLS?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk1kI2MACgkQrlYvE4MpobOsEgCgu8Mf/oR+ZRrk9b8Fo13IbmDk
HFMAoIs5qMgEAmF1wpXEeND1VfT6WfIZ
=K41/
-----END PGP SIGNATURE-----
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
