On 5/23/20 12:18 AM, Nico Kadel-Garcia wrote:
Would the time be better spent enhancing SELinux?
That----SELinux already labels everything in /bin and /usr/libexec as
system_u:object_r:bin_t:s0
so maybe it could be leveraged to cover everything you are considering?
Is there something fundamental missing in SELinux that forces a separate
implementation?
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
