On 05/03/13 14:11, Sven Vermeulen wrote: > On Fri, May 03, 2013 at 09:05:39AM -0400, Chris PeBenito wrote: > [...] >> Includes definition of "redhat1" SELinux policy capability, which >> exists in the SELinux userpace library, to keep ordering correct. >> >> The SELinux userpace portion of this was merged last year, but this kernel >> change fell on the floor. > > Would it make sense to rename the "redhat1" capability as "ptrace_child" or > so? The name "redhat1" seems quite different from the other ones > (network_peer_controls, open_perms, always_check_network). The name matches what is in libsepol. So if we change libsepol we can also change this. > Also, what is that about? Not sure which item you're asking about. -- Chris PeBenito Tresys Technology, LLC www.tresys.com | oss.tresys.com -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
