From: dwalsh@redhat.com (Daniel J Walsh)
Date: Fri, 23 Sep 2011 10:58:17 -0400
Subject: [refpolicy] RFC: secure_mode_policyload revision
In-Reply-To: <201109240053.54379.russell@coker.com.au>
References: <4E7C96DF.4000007@tresys.com>
	<201109240053.54379.russell@coker.com.au>
Message-ID: <4E7C9E89.1030905@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 09/23/2011 10:53 AM, Russell Coker wrote:
> On Sat, 24 Sep 2011, "Christopher J. PeBenito"
> <cpebenito@tresys.com> wrote:
>> Right now, secure_mode_policyload disables policy loading and
>> Boolean changing.  The latter is to prevent
>> secure_mode_policyload from being turned off.  I was thinking
>> that secure_mode_policyload could be revised by labeling this
>> Boolean, and then only removing access to it when 
>> secure_mode_policyload is enabled, so Booleans can still be
>> toggled, except for secure_mode_policyload.  Thoughts?
> 
> Sounds good.
> 
Sure.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk58nokACgkQrlYvE4MpobPYZACg68KdErKNdgkIt4W0NBMzBO+q
pXwAnR4leqZ69Dqn8jsMQV+Hb6ozvMWc
=26/K
-----END PGP SIGNATURE-----