1 |
Hi, |
2 |
|
3 |
On Thu, Apr 13, 2006 at 09:34:25PM +0200, Mivz wrote: |
4 |
> Hello, |
5 |
> |
6 |
> I was curious if the new SELinux reference policy is ready for Gentoo? |
7 |
|
8 |
no, it's not yet ready. not every policy present in the old sample policy has been translated yet into modules of the new system. plus the selinux toolchain is still a moving target and will need time to mature. |
9 |
|
10 |
> I have been working for my graduation project on a SELinux system that uses kerberos |
11 |
> and ldap for user management. |
12 |
> Bug #129795 shows some of the problems I have discovered with the current policy. |
13 |
|
14 |
well, the policy is ment to be minimal and to enable basic functionality to a system. it is expected that exotic setups will need on-site policy-related customizations. |
15 |
|
16 |
> Now I would like to run the new policy so I won't have to rewrite everything, but I am |
17 |
> afraid it will screw up my system. |
18 |
|
19 |
use what we have now in the stable branch please. |
20 |
|
21 |
> Could someone inform me on the current compatibility with Gentoo and what I could |
22 |
> expect if I start using it? |
23 |
> Also I would like to know if there is a estimated time on when it will be integrated in |
24 |
> to Gentoo. |
25 |
|
26 |
as I said it is not yet ready. the good part is that the upstream policy maintainer is Chris, so we might end up with a much more gentoo-friendly policy then what we had until now ;) |
27 |
|
28 |
cheers, |
29 |
peter |
30 |
|
31 |
-- |
32 |
petre rodan |
33 |
<kaiowas@g.o> |
34 |
Developer, |
35 |
Hardened Gentoo Linux |