Russell Coker writes:
> On Fri, 8 Mar 2002 07:28, Richard Gooch wrote:
> > Russell Coker writes:
> > > I've attached the source to a devfsd module for SE Linux security
> > > settings with a sample config file (which mostly matches the
> > > settings in file_contexts for /dev).
> >
> > What a huuuuuuuge config file!
> >
> > > Let me know what you think.
> >
> > Looks reasonable. Needs a copyleft notice, and can you put together a
> > GNUmakefile rule so that it can be automatically built if the headers
> > are available, and not built otherwise?
>
> Actually I'm planning to ask the NSA to include it in their
> selinux-small archive, having that implies that you have the
> headers.
OK, that's probably better.
> > Also, the devfsd shared objects are supposed to live in /lib/devfsd,
> > not in /usr/lib.
>
> Good point, it needs to be in the root file system.
>
> As /lib/devfsd is the official place, could you make devfsd check
> "/lib/devfsd/%s", name first if the name doesn't include a '/'character?
> That'll cut down the size of the config files.
Done.
> > Finally, can you change the name from flask to something more
> > meaningful?
>
> OK. For the next version s/flask/se/g
How about "nsa_se"? Or even "nsa_selinux"?
Regards,
Richard....
Permanent: rgooch@xxxxxxxxxxxxx
Current: rgooch@xxxxxxxxxxxxxxx
|