Re: SE Linux packages

To: debian-devel@lists.debian.org
Subject: Re: SE Linux packages
From: Steve Langasek <vorlon@debian.org>
Date: Thu, 18 Oct 2007 18:29:22 -0700
Message-id: <[🔎] 20071019012922.GC27830@dario.dodds.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 200710190926.20301.russell@coker.com.au>
References: <[🔎] 200710190926.20301.russell@coker.com.au>

Hi Russell,

On Fri, Oct 19, 2007 at 09:26:18AM +1000, Russell Coker wrote:
> deb http://www.coker.com.au etch selinux

> The above sources.list line has all the i386 packages needed for running SE 
> Linux with strict policy on Etch (apart from a minor hack that's needed 
> in /etc/init.d/udev) as well as a couple of packages that are not strictly 
> needed but which are really convenient (to solve the executable stack issue).

> http://etbe.coker.com.au/2007/10/19/my-se-linux-etch-repository/

> The above URL has my blog post with more information.

What I'm missing from your mail and blog entry is an explanation of why the
existing packages in etch don't do the job for letting users run with strict
policy.  Is the "semanage user -m" bug the only problem, or are there
others?

FWIW, I found in my tests that I couldn't get SELinux to work as expected on
my system with the etch packages, because for some reason I had no user_t
created for me.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
vorlon@debian.org                                   http://www.debian.org/

Reply to:

Follow-Ups:
- Re: SE Linux packages
  - From: Felipe Sateler <fsateler@gmail.com>

References:
- SE Linux packages
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: SE Linux packages
Next by Date: Re: SE Linux packages
Previous by thread: SE Linux packages
Next by thread: Re: SE Linux packages
Index(es):
- Date
- Thread