[prev in list] [next in list] [prev in thread] [next in thread] 

List:       selinux
Subject:    Re: [PATCH] Lazy config init in libselinux
From:       Steve G <linux_4ever () yahoo ! com>
Date:       2007-02-27 21:29:23
Message-ID: 425863.72079.qm () web51515 ! mail ! yahoo ! com
[Download RAW message or body]


>> however, they are not used in any selinux config file I've ever seen. 
>> Are they brand new and never used? Is there a reason they are 
>> not in /etc/selinux/config by default?
>
>Only CACHETRANS appears to be an issue.  You only need to define them
>in /etc/selinux/config if you want something other than the default
>value.

I don't see that one in the config file so I think everyone is using the default
value.

>It was added back when the libselinux client-side support for context
>translation was merged, upon someone's specific request on list.  So
>we'd have to go back to that discussion.

I bet it was worked around and not needed. We should revisit that discussion
since it appears to not be defined in the default config file.

>> What about /etc/security...is that still used? Should that go away?
>
>Likely obsolete, although we'd need to post an rfc asking whether any
>distro is still using that as the location for their policy files.

Sure. I was just pointing out the fact its there and is likely deprecated.

-Steve


 
____________________________________________________________________________________
Do you Yahoo!?
Everyone is raving about the all-new Yahoo! Mail beta.
http://new.mail.yahoo.com

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
[prev in list] [next in list] [prev in thread] [next in thread]