Re: Forward looking to FC2 final and SELinux

[Stephen Smoogen <smoogen lanl gov>]

On Tue, 2004-04-06 at 20:20, Jesse Keating wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On Tuesday 06 April 2004 18:50, Alan Cox wrote:
> > Because if the default loose rules are right then normal users simply
> > wont be aware of SELinux expect as something that appears in security
> > errata notes as "SELinux users are not affected"
> 
> How do these loose rules effect the plethora of 3rd party software out 
> there?  What about things like webmin which come in through it's own 
> webserver and touch practicaly everything on the system?  What about 
> webmail programs.  Hell, what about KDE?  KDE still isn't right is it?  I 
> seriously doubt these lofty goals will all be fixed perfectly by May.
> 
> Sure, SELinux might be made perfect for a pure FC2 system, but when was the 
> last time you ran across a joe home user that was using a 100% pure Red 
> Hat Linux system?
> 

Jesse, you need to look at this as a business oppurtunity for your VAR.
You now can charge big bucks to add selinux=0 in grub.conf for the
'meatheads' who cant do it themselves ;)


-- 
Stephen John Smoogen		smoogen lanl gov
Los Alamos National Lab  CCN-5 Sched 5/40  PH: 4-0645
Ta-03 SM-1498 MailStop B255 DP 10S  Los Alamos, NM 87545
-- You should consider any operational computer to be a security problem --