Gentoo Archives: gentoo-dev

From:	Mike Frysinger <vapier@g.o>
To:	gentoo-dev@l.g.o
Subject:	Re: [gentoo-dev] Adding a new selinux profile to default/linux/{amd64,x86}/10.0
Date:	Wed, 07 Dec 2011 18:45:35
Message-Id:	`201112071344.45411.vapier@gentoo.org`
In Reply to:	[gentoo-dev] Adding a new selinux profile to default/linux/{amd64,x86}/10.0 by "Anthony G. Basile"

1	On Wednesday 07 December 2011 09:07:41 Anthony G. Basile wrote:
2	> Some time ago the selinux team restructured the selinux profiles and
3	> made a features/selinux which could be stacked on the hardened profiles
4	> for x86/amd64. At that time I also tested and found that it stacked
5	> fine on default/linux/{amd64,x86}/10.0. I'm emailing the list to see if
6	> there's any reason why we shouldn't add
7	> default/linux/{amd64,x86}/10.0/selinux. Currently I prefer adding it
8	> directly to 10.0 rather than 10.0/server because the status of the later
9	> is uncertain. Selinux on the desktops is not being strongly supported
10	> so its not appropriate there either, leaving only 10.0/selinux. If
11	> added eselect profile list would show
12	>
13	> [1] default/linux/amd64/10.0
14	> [2] default/linux/amd64/10.0/selinux
15	> [3] default/linux/amd64/10.0/desktop
16	> [4] default/linux/amd64/10.0/desktop/gnome
17	> [5] default/linux/amd64/10.0/desktop/kde
18	> [6] default/linux/amd64/10.0/developer
19	> [7] default/linux/amd64/10.0/no-multilib
20	> [8] default/linux/amd64/10.0/server
21	> [9] hardened/linux/amd64 *
22	> [10] hardened/linux/amd64/selinux
23	> [11] hardened/linux/amd64/no-multilib
24	> [12] hardened/linux/amd64/no-multilib/selinux
25
26	we have the selinux/ root. is that no longer necessary ?
27	-mike

File name	MIME type
signature.asc	application/pgp-signature

Subject	Author
Re: [gentoo-dev] Adding a new selinux profile to default/linux/{amd64,x86}/10.0	"Anthony G. Basile" <basile@××××××××××××××.edu>