From: nicky726@gmail.com (Nicky726) Date: Thu, 20 Aug 2009 16:14:41 +0200 Subject: [refpolicy] Allowing aplication to run bin_t Message-ID: <200908201614.41402.Nicky726@gmail.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com Hello, when writing a policy for Konqueror I came by to an issue of allowing it to run an aplication in bin_t (drkonqi). According to Dominick Grift it is no big deal to allow that (http://oss.tresys.com/pipermail/refpolicy/2009- August/001291.html) So is that considered safe and what would be possible security riscs of allowing it? Thanks for responses, Ondrej Vadinsky