| 1 |
Hi Mike and all, |
| 2 |
|
| 3 |
Thanks, Mike! That helps me understand my confusion. |
| 4 |
|
| 5 |
Are lots of folks running Gentoo with policies other than that distributed |
| 6 |
in the Gentoo ebuild? I'd have expected anyone doing so to experience |
| 7 |
problems with emerge and other Gentoo-specific facilities. So, I infer that |
| 8 |
anyone doing so has significantly modified whatever policy they're using. |
| 9 |
|
| 10 |
Cheers, |
| 11 |
|
| 12 |
--On Tuesday, January 13, 2004 4:57 PM -0800 Michael Reilly |
| 13 |
<michaelr@×××××.com> wrote: |
| 14 |
|
| 15 |
> staff_r can su with the older NSA released policy and with Richard |
| 16 |
> Cocker's policy (I hope I spelled his name correctly). I haven't tried |
| 17 |
> the latest to see if the NSA policy has changed this or not |
| 18 |
> |
| 19 |
> I still use the older policy. If my role is staff_r I can always su. |
| 20 |
> |
| 21 |
> The older policy dis-allows going directly to staff_r via ssh. A newrole |
| 22 |
> is needed. |
| 23 |
|
| 24 |
--------------------------------------------------- |
| 25 |
Bill McCarty |
| 26 |
|
| 27 |
-- |
| 28 |
gentoo-hardened@g.o mailing list |
Archives