Re: SE Linux packages
On Fri, Oct 19, 2007 at 09:26:18AM +1000, Russell Coker wrote:
> deb http://www.coker.com.au etch selinux
> The above sources.list line has all the i386 packages needed for running SE
> Linux with strict policy on Etch (apart from a minor hack that's needed
> in /etc/init.d/udev) as well as a couple of packages that are not strictly
> needed but which are really convenient (to solve the executable stack issue).
> The above URL has my blog post with more information.
What I'm missing from your mail and blog entry is an explanation of why the
existing packages in etch don't do the job for letting users run with strict
policy. Is the "semanage user -m" bug the only problem, or are there
FWIW, I found in my tests that I couldn't get SELinux to work as expected on
my system with the etch packages, because for some reason I had no user_t
created for me.
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.