On Tue, 2014-04-29 at 10:59 -0400, Steve Lawrence wrote: I have not yet had time to try this out but i think i may have found another bug in secilc. dontaudit rules are not included in the policy it seems. Today i called a terms_dontaudit_use_console() which basically has a rule like: (dontaudit ARG1 console_device_t rw_term_perms) But the rule is not ending up in the resulting policy (in no dontaudit rules at all) secilc is looking mighty good overall though. _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
