On Thu, Nov 04, 2004 at 11:06:06PM -0500, Colin Walters wrote: > On Thu, 2004-11-04 at 13:15 +0000, Luke Kenneth Casson Leighton wrote: > > > default: no. > > Why not on by default,
i would agree with stephen that it should be compiled in, default options "selinux=no". that gives people the choice, without affecting performance. > with a targeted policy, for everyone? debianites have yet to be convinced of the benefits of _anything_ to do with selinux [irrespective of whether they are actually _aware_ of its benefits] i specifically recall seeing a message from 2002 "the more i learn about selinux, i like it less and less". that having been said, i believe, like i think you do, that a targetted policy for debian _would_ make selinux much easier to accept. l.
