>>SELinux Mailing List: by thread

Contents

Overview

What's New

Frequently Asked Questions

Background

Documentation

License

Download

Participating

Mail List

Archive Summary

Archive by Thread

Archive by Author

Archive by Date

Archive by Subject

Remaining Work

Contributors

Related Work

Press Releases

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

From: Femitha Majeed <m_femitha_at_hotmail.com>
subject: RedHat 7.2
Date: Tue, 30 Oct 2001 17:03:43 +0000

This message: [ Message body ]
Next message: Stephen Smalley: "Re: RedHat 7.2"
Previous message: Stephen Smalley: "[PATCH] Bug fix for load_policy"
Next in thread: Stephen Smalley: "Re: RedHat 7.2"
Reply: Stephen Smalley: "Re: RedHat 7.2"

Is SELinux easily configurable on RedHat 7.2?

>From: Stephen Smalley <sds@tislabs.com>
>To: <selinux@tycho.nsa.gov>
>Subject: [PATCH] Bug fix for load_policy
>Date: Tue, 30 Oct 2001 10:20:33 -0500 (EST)
>
>
>When the SELinux module is in permissive mode, a bug in the
>convert_contexts function used by the load_policy function can leave the
>SID table in an inconsistent state when users, roles, or types are
>removed from the policy on a running system. The attached patch fixes
>this bug. To apply, save the attached patch to ~/services.patch, cd
>selinux, and run 'patch -p1 < services.patch'. Then, rebuild the
>LSM-patched kernel with the built-in SELinux security module.
>
>--
>Stephen D. Smalley, NAI Labs
>ssmalley@nai.com
>
>
><< services.patch >>

Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp

--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

From: Stephen Smalley <sds_at_tislabs.com>
subject: Re: RedHat 7.2
Date: Tue, 30 Oct 2001 12:35:04 -0500 (EST)

This message: [ Message body ]
Next message: Russell Coker: "2.4.13?"
Previous message: Femitha Majeed: "RedHat 7.2"
In reply to: Femitha Majeed: "RedHat 7.2"

On Tue, 30 Oct 2001, Femitha Majeed wrote:

> Is SELinux easily configurable on RedHat 7.2?

We haven't tried RedHat 7.2 yet, so I don't know about what changes might be necessary in the example policy configuration. However, there is at least one non-policy issue for RedHat 7.2 - the use of the ext3 filesystem. LSM is tracking Linus' kernel tree, and Linus' kernel tree does not yet include ext3. Hopefully, ext3 will be merged into Linus' tree sometime soon. As far as the SELinux security module is concerned, ext3 shouldn't present any problems, although you do need the patch that I posted a little while back (of course, it will be included in future releases) so that the security module will recognize ext3 as a legitimate filesystem type for persistent labeling.

Another non-policy issue for RedHat 7.2 will be the base sources for our modified daemons and utilities. Due to limited resources and the fact that many of the modified packages are non-essential, we only update these packages as necessary or when there is a serious bug. We've internally updated to the latest util-linux and openssh SRPMS for RedHat 7.1, which should show up in the next release.

--
Stephen D. Smalley, NAI Labs
ssmalley@nai.com






--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

This archive was generated by hypermail 2.2.0 on Wed 11 Jun 2008 - 08:10:54 EDT

Information Assurance | Signals & Intelligence Links | Accessibility | Privacy & Security