| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
Peter Simons wrote: |
| 5 |
| Mike Frysinger writes: |
| 6 |
| |
| 7 |
| > then again you probably dont want your gateway running 2.6.x ;) |
| 8 |
| |
| 9 |
| Just curious: What are the chances of running a decent server with 2.6 |
| 10 |
| and SELinux? What kind of problems would you have to expect? |
| 11 |
|
| 12 |
I followed the instructions in the "Quick Start Guide", using the policy |
| 13 |
with no modifications. |
| 14 |
|
| 15 |
I am completely new to SELinux, so I probably missed something... |
| 16 |
|
| 17 |
but I was getting lots of errors AFTER the initial emerge of |
| 18 |
selinux-enabled packages -- until I issues a 'make load' to load the |
| 19 |
policy. Probably I re-booted once too often in there... |
| 20 |
|
| 21 |
Anyway, I have made the initrd, and when I re-boot, it loads the |
| 22 |
policies, and then I get an avc denied error for read on /dev/ram0 (the |
| 23 |
ramdisk), pivot_root fails, and init dies. |
| 24 |
|
| 25 |
I can bring the system up without the init ramdisk (and thus without the |
| 26 |
policy loaded, I suppose) |
| 27 |
|
| 28 |
kernel 2.6.0-test9-patchset1 (the first of the -test9 vanilla sources). |
| 29 |
|
| 30 |
I think it works, technology-wise, but I am missing something in the |
| 31 |
config... |
| 32 |
|
| 33 |
~ boyd |
| 34 |
|
| 35 |
Boyd Waters |
| 36 |
Socorro, New Mexico |
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
-----BEGIN PGP SIGNATURE----- |
| 42 |
Version: GnuPG v1.2.3 (GNU/Linux) |
| 43 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
| 44 |
|
| 45 |
iD8DBQE/oJ/L0is8k1r0QeURAiuVAJ9eKFykgpWnq0zoaMXsQpof60+0agCeKnMr |
| 46 |
JFlq+m7hu8XOoR3mi1yOY0A= |
| 47 |
=QH8u |
| 48 |
-----END PGP SIGNATURE----- |
| 49 |
|
| 50 |
|
| 51 |
-- |
| 52 |
gentoo-hardened@g.o mailing list |
Archives