On Tue, 15 Jan 2002, Shaun Savage wrote:

> OK the different values are returned, but how in the are may users
> defined genericly in the policy file?

The new libsecure functions and the /etc/security/default_contexts file doesn't address the issue of a generic user. It merely eliminates the need to maintain per-user entries in default_context and cron_context. There is still the problem of maintaining policy/users. As Mark Westerman suggested (and I agreed), this can be addressed through the definition of a generic user and some minor modifications to the libsecure functions to use this as the default, as long as you do not need to distinguish among such users in the policy. If you want to maintain distinct role sets for these users, then you will need to update policy/users in some manner.

--
Stephen D. Smalley, NAI Labs
ssmalley@nai.com




--
You have received this message because you are subscribed to the selinux list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.