'Re: mock SELinux policy as RPM package'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       fedora-buildsys-list
Subject:    Re: mock SELinux policy as RPM package
From:       Clark Williams <williams () redhat ! com>
Date:       2006-08-17 20:24:59
Message-ID: 44E4D09B.8060208 () redhat ! com
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Michael_E_Brown@dell.com wrote:
> > -----Original Message-----
> > From: fedora-buildsys-list-bounces@redhat.com 
> > [mailto:fedora-buildsys-list-bounces@redhat.com] On Behalf Of 
> > Clark Williams
> > Sent: Thursday, August 17, 2006 10:56 AM
> > To: Discussion of Fedora build system
> > Subject: Re: mock SELinux policy as RPM package
> > 
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> > 
> > Hans Ulrich Niedermann wrote:
> > > Hi,
> > > 
> > > the question of a package of the mock SELinux policy from
> > > 
> > > http://fedoraproject.org/wiki/Extras/MockTricks
> > > 
> > > has come up a few times in the past, and I have made an RPM 
> > package for
> > > my own use some time ago:
> > > 
> > > http://n-dimensional.de/software/mock-selinux-policy/
> > > 
> > > It doesn't have all the bells and whistles Paul Howarth has 
> > mentioned in
> > http://fedoraproject.org/wiki/PackagingDrafts/SELinux/PolicyMo
> > dules yet
> > > (my package predates that document by several weeks), but 
> > should be too
> > > difficult to adapt if someone is interested.
> > > 
> > > (This is my second try to post here as my last message seems to have
> > > been eaten by the moderation system.)
> > > 
> > > Gruß,
> > > 
> > 
> > - From a quick read of the Wiki, it looks like there are packages that
> > fail to build on FC5 hosts due to policy problems (I didn't realize
> > that).  This means to me that we should add a loadable policy 
> > module as
> > part of the mock package.
> > 
> > Seth, Michael, Dan, et al, what do you guys think?
> 
> I think it would be a good idea to package an selinux policy directly in with the \
> mock package. This would give people a good starting place for tweaking if they \
> have problems, and encourage them to send their fixes upstream. 
> Hans policy might be a good starting point if it passes review by somebody who \
>                 knows more about selinux than I do.
> --

Yeah, you and I are in the same boat. I can *spell* SELinux, but that's
about it.  I'll poke around a bit with the policy and see what it would
take to integrate it. Might be able to get Dan Walsh to look at it as well.

Clark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFE5NCaHyuj/+TTEp0RAjAtAJ9LGRhjBlmVCUynuRFDa+dfSRD+rQCg1lvM
Kj/kgW53htgL82aWEYiISII=
=ZKzj
-----END PGP SIGNATURE-----


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic