On Fri, 16 Nov 2001, Tracy R Reed wrote:

> I am having problems understanding how to define policies and how the
> roles, domains, types, etc. work to do this. I am slowly making my way
> through the documentation on the web site but I find most of it to be
> quite inscrutable. Has anyone written up a general tutorial on how all of
> this stuff works in practice?

I don't think anyone has written a general tutorial. However, you'll find quite a bit of useful information in the security server section of the first technical report, the entire second technical report, and the OLS 2001 paper, all of which are on the web site. Several people outside of the SELinux project have already contributed to the example policy configuration, including both refinement of the existing domains and new domains (e.g. Mark Westerman's mount_t, ipsec_t and gdm_t domains, Yuichi Nakamura's named_t domain, David Wheeler's ping_t and hwclock_t domains). Feel free to ask specific questions about policy configuration on the list.

--
Stephen D. Smalley, NAI Labs
ssmalley@nai.com




--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.