| 1 |
On Mon, Apr 09, 2012 at 06:36:00PM -0400, Alain Toussaint wrote: |
| 2 |
> I’m building from scratch a Samba file server which I may |
| 3 |
> use samba4 git version (i.e. not a package from Gentoo) but the rest will |
| 4 |
> be stock Gentoo and for the moment, I’m running stable and the profile is |
| 5 |
> amd64/no-multilib/selinux. In order to have a good set of policies, should |
| 6 |
> I run ~amd64 or the default will be fine? |
| 7 |
|
| 8 |
I definitely don't recommend running the entire system in ~arch with |
| 9 |
SELinux. I'm not able to work out the policies for ~arch in time as soon as |
| 10 |
they are needed (in other words, I can use the 30 days "stabilization" just |
| 11 |
to make sure the policies don't make your system unworkable). |
| 12 |
|
| 13 |
However, the policies themselves might be a candidate for running in ~arch. |
| 14 |
|
| 15 |
That being said, if the stable policies work for you, keep them in the |
| 16 |
stable state ;) |
| 17 |
|
| 18 |
Sven |
Archives