Re: The possibility of SELinux targeted policy in the default install

To: Erich Schubert <erich@debian.org>
Cc: Manoj Srivastava <srivasta@golden-gryphon.com>, debian-boot@lists.debian.org, Russell Coker <russell@coker.com.au>
Subject: Re: The possibility of SELinux targeted policy in the default install
From: Steve Langasek <vorlon@debian.org>
Date: Thu, 14 Sep 2006 23:10:50 -0700
Message-id: <[🔎] 20060915061050.GA2905@mauritius.dodds.net>
Mail-followup-to: Erich Schubert <erich@debian.org>, Manoj Srivastava <srivasta@golden-gryphon.com>, debian-boot@lists.debian.org, Russell Coker <russell@coker.com.au>
In-reply-to: <[🔎] 1158270874.32661.46.camel@wintermute.xmldesign.de>
References: <[🔎] 87wt87qoj9.fsf@glaurung.internal.golden-gryphon.com> <[🔎] 1158270874.32661.46.camel@wintermute.xmldesign.de>

On Thu, Sep 14, 2006 at 11:54:34PM +0200, Erich Schubert wrote:
> Hi Manoj, Russell, Debian-Boot,
> Thinking some more about it, I have large doubts that we'll have a
> somewhat working SELinux out of the box with etch. There is still quite
> some stuff we would need to do some auto setup magic (or at least
> convince the maintainers).
> For example both /etc/pam.d/login and /etc/pam.d/ssh need to be
> modified. The modification in ssh is in, just needs to be uncommented. I
> think Uwe just contacted the shadow maintainers about the login change.

Could you remind me why this module is specific to /etc/pam.d/ssh and
/etc/pam.d/login, rather than something that should be enabled in the global
config?

Thanks,
-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
vorlon@debian.org                                   http://www.debian.org/

Reply to:

Follow-Ups:
- Re: The possibility of SELinux targeted policy in the default install
  - From: Christian Perrier <bubulle@debian.org>
- Re: The possibility of SELinux targeted policy in the default install
  - From: Erich Schubert <erich@debian.org>

References:
- The possibility of SELinux targeted policy in the default install
  - From: Manoj Srivastava <srivasta@golden-gryphon.com>
- Re: The possibility of SELinux targeted policy in the default install
  - From: Erich Schubert <erich@debian.org>

Prev by Date: Re: The possibility of SELinux targeted policy in the default install
Next by Date: Bug#387470: debian-installer: needs an possibility to load a full font for g-i
Previous by thread: Re: The possibility of SELinux targeted policy in the default install
Next by thread: Re: The possibility of SELinux targeted policy in the default install
Index(es):
- Date
- Thread