On Wed, 2001-10-17 at 08:05, Stephen Smalley wrote:
>
> A few additional notes about this release:
>
> 1) A new run_init utility program and domain have been created to allow
> administrators to run the init scripts with the appropriate security
> context (e.g. to restart daemons) in a secure manner. This was requested
> by several SELinux users. See the updated README, utils/run_init, and
> utils/appconfig/initrc_context.

If you are not using PAM it didn't compile so I just moved #define CONTEXT_FILE .....
out of the ifdef PAM block. in run_init.c FYI.

Also newrole.c line 412 almost certanly has an error

I changed
if ( !authenticate_via_shadow_passwd(d p_passwd_line) ) { to
if ( !authenticate_via_shadow_passwd(p_passwd_line) ) {

Also, I have integrated this with a Slackware 8.0 filewall that is re-exporting nfs filesystems to samba for windows clients. It is also running dhcp. I have created iptables, dhcpd, and samba domains. I also had to change a huge amount of file_contexts. It is working fine as a production server. I am very pleased with selinux.

J

--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.