From: dwalsh@redhat.com (Daniel J Walsh)
Date: Thu, 18 Mar 2010 13:12:36 -0400
Subject: [refpolicy] Fwd: Re: system_logging.patch
Message-ID: <4BA25F04.7030105@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Can you comment on the levels of the sockets


-------- Original Message --------
Subject: 	Re: system_logging.patch
Date: 	Wed, 17 Mar 2010 14:40:11 -0400
From: 	Christopher J. PeBenito <cpebenito@tresys.com>
Organization: 	Tresys Technology, LLC
To: 	Daniel J Walsh <dwalsh@redhat.com>
CC: 	refpolicy at oss1.tresys.com



On Tue, 2010-02-23 at 17:16 -0500, Daniel J Walsh wrote:
>  http://people.fedoraproject.org/~dwalsh/SELinux/F13/system_logging.patch
>
>  New log context
>
>  Allow setting audit tty
>
>  Fixing interfaces

Why are the sockets being set to system high?  Same thing for the pid
file?  They don't have sensitive data.

The logging_manage_all_logs() change is excessive, as "manage" doesn't
include relabeling.

Why does auditd need to use nsswitch?

Otherwise merged.

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.tresys.com/pipermail/refpolicy/attachments/20100318/9014d0dc/attachment.html