Dne 24. 06. 20 v 21:03 Iñaki Ucar napsal(a): > 3. Use audit2allow to convert them to rules. > 4. Repeat until you don't get any more complaints. > > And I cannot believe my eyes. Is this *really* the way to implement > SELinux policies? It seems like a joke to me.
No. It is a bit complicated. You should run audit2allow with -R option. And you should actually review what audit2allow produce. But otherwise... yes, it is that simple. -- Miroslav Suchy, RHCA Red Hat, Associate Manager ABRT/Copr, #brno, #fedora-buildsys _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
