On Wednesday 26 March 2008 04:08, Christian Perrier <[EMAIL PROTECTED]> 
wrote:
> Quoting Nicolas François ([EMAIL PROTECTED]):
> > > password.  With SE Linux Strict policy a user who has UID==0 and the
> > > role user_r can do little damage to the system.
> >
> > Thanks for the patch. I will commit it for 4.1.1.
>
> Is there any need to discuss this with other distros?

Which other distros are you referring to?  Red Hat appears to use a different 
source base for passwd (and in any case a large part of my patch was copied 
from their code).  Who else has SE Linux support?

> (context for Russel: we are now upstream for shadow so we do our best
> to sync our improvements with other vendors who use it...."we"==mostly
> Nicolas François and a very little part of /me)

For distros using SE Linux my patch will never cause any problems (if the 
previous code worked) and will stop some cases where machines can get owned.


Reply via email to