-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_terminal.patch
Terminals can be labeled devpts_t and consoles can be labeled tty_device_t.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmu8ekACgkQrlYvE4MpobO/rwCgoEP9JAH3atsQLGZ3zVq+GDZ8
SBAAoJ9tDE4f8+yhseoWxcazEcmVgNg0
=Z3F/
-----END PGP SIGNATURE-----
On Wed, 2009-03-04 at 16:26 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_terminal.patch
>
> Terminals can be labeled devpts_t and consoles can be labeled
> tty_device_t.
For both of these, in what circumstances does this happen?
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christopher J. PeBenito wrote:
> On Wed, 2009-03-04 at 16:26 -0500, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F11/kernel_terminal.patch
>>
>> Terminals can be labeled devpts_t and consoles can be labeled
>> tty_device_t.
>
> For both of these, in what circumstances does this happen?
>
Usually boot up, I think devices created before init. Devices created
by unconfined domains, devices created in permissive mode.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmv6BoACgkQrlYvE4MpobN4EwCfaPjA7jFi8IWR4xz1xT2X3VQm
EKUAnRDqvCeMFQWIBHGQMahByulkj9EP
=gKed
-----END PGP SIGNATURE-----