[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: The possibility of SELinux targeted policy in the default install

Quoting Steve Langasek (vorlon@debian.org):
> On Thu, Sep 14, 2006 at 11:54:34PM +0200, Erich Schubert wrote:
> > Hi Manoj, Russell, Debian-Boot,
> > Thinking some more about it, I have large doubts that we'll have a
> > somewhat working SELinux out of the box with etch. There is still quite
> > some stuff we would need to do some auto setup magic (or at least
> > convince the maintainers).
> > For example both /etc/pam.d/login and /etc/pam.d/ssh need to be
> > modified. The modification in ssh is in, just needs to be uncommented. I
> > think Uwe just contacted the shadow maintainers about the login change.
> Could you remind me why this module is specific to /etc/pam.d/ssh and
> /etc/pam.d/login, rather than something that should be enabled in the global

The same question has been asked in #387480 (adding pam_selinux for login),

Attachment: signature.asc
Description: Digital signature

Reply to: