From: russell@coker.com.au (Russell Coker)
Date: Tue, 14 Jan 2014 21:52:36 +1100
Subject: [refpolicy] authbind policy should be removed
In-Reply-To: <1389694572.28251.22.camel@x220.localdomain>
References: <1814654.EuWY9bQnYy@russell.coker.com.au>
	<1389694572.28251.22.camel@x220.localdomain>
Message-ID: <201401142152.36111.russell@coker.com.au>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Tue, 14 Jan 2014, Dominick Grift <dominick.grift@gmail.com> wrote:
> You do not have to install that module. If you don't want it then just
> remove it from your modules.conf, or do semodule -r authbind if its
> already installed.

What is the point in having dead code in the repository?

Code that is in the repository may be copied by other people, code that starts 
with the letter 'a' is more likely to be copied.  We don't want bad code 
copied to make more bad code.

The existence of the policy files will lead people to believe that it will 
work, it won't.  It will also lead people to believe that it's a good idea, on 
a SE Linux system it really isn't.

In retrospect I probably shouldn't have even written that policy module.  At 
the time we converted to modular policy whoever wasted time on converting it 
shouldn't have done so.  It's about 10 years overdue for that module to be 
removed.

-- 
My Main Blog         http://etbe.coker.com.au/
My Documents Blog    http://doc.coker.com.au/