Mailing List Archive: SELinux functionality

Tóth-

I haven't tried all of those programs with gentoo selinux, but my general
experience is that if the program has a policy available either in the base
policy or as a separate download, then it's a simple matter to get it
operating correctly. If you choose a program that no one has written a
policy for, then you get to learn how to write policy. :)

Richard.

> -----Original Message-----
> From: Tóth Attila [mailto:dwokfur@dc.sote.hu]
> Sent: Wednesday, September 15, 2004 12:19 PM
> To: gentoo-hardened@lists.gentoo.org
> Subject: [gentoo-hardened] SELinux functionality
>
>
> Greetings to all,
>
> Since my Hardened box running fine for some time using pie-ssp and
> Grsecurity, I'm considering to give also SELinux a try.I'm
> wondering about the set of daemons, which are already supported by the
> actual policy. I would basically set up a box with the following software
> components: syslog-ng, dcron, oidentd, apache2(+ssl), php4, mysql,
> sendmail, clamav(+milter), spamassassin(+milter), dovecot (IMAP) and some
> php webapps.What should I expect from the policy pint of view?
>
> Thx,
> Dw.
>
> --
> dr Tóth Attila, Radiológus Rezidens, 06-30-5962-962
> Attila Toth MD, Radiology Resident, +36-30-5962-962
>
>
>
>
> --
> gentoo-hardened@gentoo.org mailing list
>
>
>

--
gentoo-hardened@gentoo.org mailing list