1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
Peter Simons wrote: |
5 |
| Mike Frysinger writes: |
6 |
| |
7 |
| > then again you probably dont want your gateway running 2.6.x ;) |
8 |
| |
9 |
| Just curious: What are the chances of running a decent server with 2.6 |
10 |
| and SELinux? What kind of problems would you have to expect? |
11 |
|
12 |
I followed the instructions in the "Quick Start Guide", using the policy |
13 |
with no modifications. |
14 |
|
15 |
I am completely new to SELinux, so I probably missed something... |
16 |
|
17 |
but I was getting lots of errors AFTER the initial emerge of |
18 |
selinux-enabled packages -- until I issues a 'make load' to load the |
19 |
policy. Probably I re-booted once too often in there... |
20 |
|
21 |
Anyway, I have made the initrd, and when I re-boot, it loads the |
22 |
policies, and then I get an avc denied error for read on /dev/ram0 (the |
23 |
ramdisk), pivot_root fails, and init dies. |
24 |
|
25 |
I can bring the system up without the init ramdisk (and thus without the |
26 |
policy loaded, I suppose) |
27 |
|
28 |
kernel 2.6.0-test9-patchset1 (the first of the -test9 vanilla sources). |
29 |
|
30 |
I think it works, technology-wise, but I am missing something in the |
31 |
config... |
32 |
|
33 |
~ boyd |
34 |
|
35 |
Boyd Waters |
36 |
Socorro, New Mexico |
37 |
|
38 |
|
39 |
|
40 |
|
41 |
-----BEGIN PGP SIGNATURE----- |
42 |
Version: GnuPG v1.2.3 (GNU/Linux) |
43 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
44 |
|
45 |
iD8DBQE/oJ/L0is8k1r0QeURAiuVAJ9eKFykgpWnq0zoaMXsQpof60+0agCeKnMr |
46 |
JFlq+m7hu8XOoR3mi1yOY0A= |
47 |
=QH8u |
48 |
-----END PGP SIGNATURE----- |
49 |
|
50 |
|
51 |
-- |
52 |
gentoo-hardened@g.o mailing list |