1 |
Ok. If I make changes to an existing selinux-base-policy file, do you want |
2 |
the whole files, of just a patch? |
3 |
|
4 |
-Tad |
5 |
|
6 |
> -----Original Message----- |
7 |
> From: Chris PeBenito [mailto:pebenito@g.o] |
8 |
> Sent: Friday, November 28, 2003 11:13 AM |
9 |
> To: Tad |
10 |
> Cc: Hardened Gentoo Mail List |
11 |
> Subject: [gentoo-hardened] Call for policy and devs (was: qmail on |
12 |
> selinux) |
13 |
> |
14 |
> This reminds me to make another call for policy devs. I'm looking for |
15 |
> people to help out with maintaining daemon policies (common ones). |
16 |
> Basically the person(s) would be taking the NSA example policies, fixing |
17 |
> up the file contexts, and make adjustments for Gentoo, and testing. |
18 |
> They'd also be a backup for me. |
19 |
> |
20 |
> With that being said, I'm also making a call out for people who have |
21 |
> written or modified policy to get their daemons working. I'm asking |
22 |
> that you submit your policy on bugzilla (assign bugs to |
23 |
> pebenito@g.o). I'd prefer the files as separate attachments to |
24 |
> the bug, not a tarball. |
25 |
> |
26 |
> There are a few requirements: |
27 |
> 1. please make comments (in the policy and/or bug), so I can understand |
28 |
> where/why you've made changes. |
29 |
> 2. the policy should cover common installations. Please don't submit |
30 |
> policy for odd or nonstandard daemon configurations. |
31 |
> 3. I need to know if the policy is dependent on another policy (for |
32 |
> example rpcd is dependent on portmap) other than base-policy. |
33 |
> 4. it should be a common daemon (others will be accepted when the common |
34 |
> stuff is in portage). |
35 |
> |
36 |
> I'll also put this information on the project page. |
37 |
> |
38 |
> On Thu, 2003-11-27 at 03:06, Tad wrote: |
39 |
> > Iÿve got qmail working on my SElinux system. Itÿs not complete, but |
40 |
> > itÿs enough to run qmail-send (and helpers) and qmail-smtpd. |
41 |
> > However, qmail-pop3d, qmail-qmqpd and qmail-qmtpd are not supported. |
42 |
> -- |
43 |
> Chris PeBenito |
44 |
> <pebenito@g.o> |
45 |
> Developer, |
46 |
> Hardened Gentoo Linux |
47 |
> Embedded Gentoo Linux |
48 |
> |
49 |
> Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 |
50 |
> Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 |
51 |
|
52 |
|
53 |
-- |
54 |
gentoo-hardened@g.o mailing list |