From: dwalsh@redhat.com (Daniel J Walsh) Date: Fri, 23 Sep 2011 10:58:17 -0400 Subject: [refpolicy] RFC: secure_mode_policyload revision In-Reply-To: <201109240053.54379.russell@coker.com.au> References: <4E7C96DF.4000007@tresys.com> <201109240053.54379.russell@coker.com.au> Message-ID: <4E7C9E89.1030905@redhat.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09/23/2011 10:53 AM, Russell Coker wrote: > On Sat, 24 Sep 2011, "Christopher J. PeBenito" > wrote: >> Right now, secure_mode_policyload disables policy loading and >> Boolean changing. The latter is to prevent >> secure_mode_policyload from being turned off. I was thinking >> that secure_mode_policyload could be revised by labeling this >> Boolean, and then only removing access to it when >> secure_mode_policyload is enabled, so Booleans can still be >> toggled, except for secure_mode_policyload. Thoughts? > > Sounds good. > Sure. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk58nokACgkQrlYvE4MpobPYZACg68KdErKNdgkIt4W0NBMzBO+q pXwAnR4leqZ69Dqn8jsMQV+Hb6ozvMWc =26/K -----END PGP SIGNATURE-----