Re: Changing selinux enforcing mode at runtime

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Stephen Smalley <sds@xxxxxxxxxxxxx>
Subject: Re: Changing selinux enforcing mode at runtime
From: Srivatsa Vaddagiri <vatsa.ml@xxxxxxxxx>
Date: Tue, 10 Sep 2019 16:34:37 +0530
Cc: selinux@xxxxxxxxxxxxxxx
In-reply-to: <45562434-a8bc-ba91-2eee-7407dab4a97f@tycho.nsa.gov>
References: <CAMHO8so3mL4hOLd12gg=DZQz7=1auXQET6dVip+r=9GGPjec+Q@mail.gmail.com> <45562434-a8bc-ba91-2eee-7407dab4a97f@tycho.nsa.gov>

> The more complicated scenario is tasks created before initial policy
> load, because those may not be assigned the correct security context.

I think we may be interested in that case (tasks created before
initial policy load). Would those tasks' operations
fail when subsequently selinux policies are loaded and mode set to enforcing?

- vatsa

Follow-Ups:
- Re: Changing selinux enforcing mode at runtime
  - From: Stephen Smalley

References:
- Changing selinux enforcing mode at runtime
  - From: Srivatsa Vaddagiri
- Re: Changing selinux enforcing mode at runtime
  - From: Stephen Smalley

Prev by Date: Re: [PATCH] selinux-testsuite: add tests for fsnotify
Next by Date: Re: [PATCH] selinux-testsuite: add tests for fsnotify
Previous by thread: Re: Changing selinux enforcing mode at runtime
Next by thread: Re: Changing selinux enforcing mode at runtime
Index(es):
- Date
- Thread

[Index of Archives] [Selinux Refpolicy] [Linux SGX] [Fedora Users] [Fedora Desktop] [Yosemite Photos] [Yosemite Camping] [Yosemite Campsites] [KDE Users] [Gnome Users]

Powered by Linux