From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Thu, 22 Mar 2012 21:02:29 +0100
Subject: [refpolicy] [PATCH 0/13] Numerous dontaudits
Message-ID: <20120322200229.GA3387@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

This set includes quite a few dontaudit updates on the policy that we have
running in Gentoo since the 20110726 policies and without feedback from
users that they are incorrect or that I'm missing something.

Now handling dontaudits isn't easy, it's often much easier to find out why
you need to allow something (as the application otherwise breaks) whereas
finding denials that do not seem to have any influence on the system is a
lot harder to pin down.

But still, I guess it's okay to bring out these dontaudits in refpolicy;
either others can find flaws or confirm that they too dontaudit these
settings.