Re: [PATCH 1/1] [bug556972-srivasta]: Explicitly allow /selinux and /sys as FHS exceptions

To: Manoj Srivastava <srivasta@debian.org>
Cc: debian-policy@lists.debian.org, 556972-quiet@bugs.debian.org
Subject: Re: [PATCH 1/1] [bug556972-srivasta]: Explicitly allow /selinux and /sys as FHS exceptions
From: Wouter Verhelst <wouter@debian.org>
Date: Fri, 4 Dec 2009 08:53:47 +0100
Message-id: <[🔎] 20091204075346.GV5302@celtic.nixsys.be>
In-reply-to: <1258742030-25355-1-git-send-email-srivasta@debian.org>
References: <1258742030-25355-1-git-send-email-srivasta@debian.org>

Hi,

I'm a bit late to the party, but:

On Fri, Nov 20, 2009 at 12:33:50PM -0600, Manoj Srivastava wrote:
> This patch explicitly allows /sys and /selinux as additional
> directories int he root file system allowed under the policy.

We should probably add /spu to that list, which is where spufs is
traditionally mounted on CBEA machines (Cell Broadcast Engine
Architecture) to manage (communication with) the Synergistic Processing
Elements. Without this pseudofilesystem, interaction with the SPEs is
impossible.

-- 
The biometric identification system at the gates of the CIA headquarters
works because there's a guard with a large gun making sure no one is
trying to fool the system.
  http://www.schneier.com/blog/archives/2009/01/biometrics.html

Reply to:

Follow-Ups:
- Re: [PATCH 1/1] [bug556972-srivasta]: Explicitly allow /selinux and /sys as FHS exceptions
  - From: Bill Allombert <Bill.Allombert@math.u-bordeaux1.fr>

Prev by Date: Bug#555982: debian-policy: RPATH in binaries and shared libraries
Next by Date: Bug#556015: debian-policy: Clarify requirements for copyright file
Previous by thread: Bug#559116: Applies also for vcs-*
Next by thread: Re: [PATCH 1/1] [bug556972-srivasta]: Explicitly allow /selinux and /sys as FHS exceptions
Index(es):
- Date
- Thread