On 01/20/2017 05:18 PM, Adam Williamson wrote:
On Sat, 2017-01-21 at 01:13 +0100, Kevin Kofler wrote:
Only the NSA can think that
duplicating knowledge about ALL programs in the distribution in a single
central database (single point of failure) can ever scale.
By the way, this isn't true at all. Most packages can and, these days,
are encouraged to ship their own SELinux policies. In Fedora currently,
I see:
copr-selinux
cockpit-selinux
drraw-selinux
gcl-selinux
websvn-selinux
totpcgi-selinux
vfrnav-selinux
dist-git-selinux
etc, etc, etc.
Really? This is news to me (and I'm on the FPC).
I see these drafts:
https://fedoraproject.org/wiki/PackagingDrafts/SELinux
https://fedoraproject.org/wiki/SELinux_Policy_Modules_Packaging_Draft
but that's it.
--
Orion Poplawski
Technical Manager 303-415-9701 x222
NWRA/CoRA Division FAX: 303-415-9702
3380 Mitchell Lane or...@cora.nwra.com
Boulder, CO 80301 http://www.cora.nwra.com
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
