Some thoughts:

1. SeLinux implements a very nice GENERAL scripting language for security policies.
2. Is there a simple policy that merely duplicates the one that implicitly exists in Linux already (i.e., user, group ownership and permissions)?

My thoughts are that one could begin with this and tighten it up one step at a time. This might be easier than trying to create a very fine-grained security policy from the outset.
--

--

You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Wed 10 Oct 2001 - 12:59:09 EDT