| 1 |
Tóth- |
| 2 |
|
| 3 |
I haven't tried all of those programs with gentoo selinux, but my general |
| 4 |
experience is that if the program has a policy available either in the base |
| 5 |
policy or as a separate download, then it's a simple matter to get it |
| 6 |
operating correctly. If you choose a program that no one has written a |
| 7 |
policy for, then you get to learn how to write policy. :) |
| 8 |
|
| 9 |
Richard. |
| 10 |
|
| 11 |
> -----Original Message----- |
| 12 |
> From: Tóth Attila [mailto:dwokfur@×××××××.hu] |
| 13 |
> Sent: Wednesday, September 15, 2004 12:19 PM |
| 14 |
> To: gentoo-hardened@l.g.o |
| 15 |
> Subject: [gentoo-hardened] SELinux functionality |
| 16 |
> |
| 17 |
> |
| 18 |
> Greetings to all, |
| 19 |
> |
| 20 |
> Since my Hardened box running fine for some time using pie-ssp and |
| 21 |
> Grsecurity, I'm considering to give also SELinux a try.I'm |
| 22 |
> wondering about the set of daemons, which are already supported by the |
| 23 |
> actual policy. I would basically set up a box with the following software |
| 24 |
> components: syslog-ng, dcron, oidentd, apache2(+ssl), php4, mysql, |
| 25 |
> sendmail, clamav(+milter), spamassassin(+milter), dovecot (IMAP) and some |
| 26 |
> php webapps.What should I expect from the policy pint of view? |
| 27 |
> |
| 28 |
> Thx, |
| 29 |
> Dw. |
| 30 |
> |
| 31 |
> -- |
| 32 |
> dr Tóth Attila, Radiológus Rezidens, 06-30-5962-962 |
| 33 |
> Attila Toth MD, Radiology Resident, +36-30-5962-962 |
| 34 |
> |
| 35 |
> |
| 36 |
> |
| 37 |
> |
| 38 |
> -- |
| 39 |
> gentoo-hardened@g.o mailing list |
| 40 |
> |
| 41 |
> |
| 42 |
> |
| 43 |
|
| 44 |
|
| 45 |
-- |
| 46 |
gentoo-hardened@g.o mailing list |
Archives