From: chanson@TrustedCS.com (chanson at TrustedCS.com)
Date: Fri, 13 Feb 2009 18:54:55 -0500
Subject: [refpolicy] [PATCH] refpolicy: Add missing network related
	MLSconstraints
References: <20090212211531.619341973@hp.com>
	<200902131702.10467.paul.moore@hp.com>
	<170D6ABBBA770349AA49582A86FCED15BA0238@HAVOC.tcs-sec.com>
	<200902131817.29764.paul.moore@hp.com>
Message-ID: <170D6ABBBA770349AA49582A86FCED15BA0249@HAVOC.tcs-sec.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

 
> 
> Just out of curiosity, are you guys using any of the new 
> stuff or are you still using your own special kernel with the 
> rejected network controls?  I ask because I would be curious 
> about any feedback you might have on the new bits in mainline.
> 

We can't really use anything new since we use the same baseline for
multiple products, each of which may go through multiple accreditations,
some of which are much stricter than others as to changed content.
Therefore, we continue to use our patch on the approved baseline which
adds the same basic ideas as the mainline enhancements.

-Chad