From: russell@coker.com.au (Russell Coker) Date: Tue, 14 Jan 2014 21:52:36 +1100 Subject: [refpolicy] authbind policy should be removed In-Reply-To: <1389694572.28251.22.camel@x220.localdomain> References: <1814654.EuWY9bQnYy@russell.coker.com.au> <1389694572.28251.22.camel@x220.localdomain> Message-ID: <201401142152.36111.russell@coker.com.au> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On Tue, 14 Jan 2014, Dominick Grift wrote: > You do not have to install that module. If you don't want it then just > remove it from your modules.conf, or do semodule -r authbind if its > already installed. What is the point in having dead code in the repository? Code that is in the repository may be copied by other people, code that starts with the letter 'a' is more likely to be copied. We don't want bad code copied to make more bad code. The existence of the policy files will lead people to believe that it will work, it won't. It will also lead people to believe that it's a good idea, on a SE Linux system it really isn't. In retrospect I probably shouldn't have even written that policy module. At the time we converted to modular policy whoever wasted time on converting it shouldn't have done so. It's about 10 years overdue for that module to be removed. -- My Main Blog http://etbe.coker.com.au/ My Documents Blog http://doc.coker.com.au/