[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: FC2 and FC1 and common home

From: Bill Nottingham <notting redhat com>
To: Development discussions related to Fedora Core <fedora-devel-list redhat com>
Subject: Re: FC2 and FC1 and common home
Date: Wed, 7 Apr 2004 17:03:53 -0400

Colin Walters (walters redhat com) said: 
> >  I'm willing
> > to bet that we'll get an application behavior change at some point
> > that's going to end up making the policy require a specific version of
> > some program. 
> 
> Why not have the package depend on a particular version of policy?

It would have to be conflicts, actually.

> > I don't think that they're really any more independent than the policy
> > _should_ be.  The policy for sendmail should have no relation to the
> > policy for httpd.  The two are orthogonal to each other. 
> 
> Not completely.  Both of them use mta.te.  If a security administrator
> wanted to change how mta.te worked, and the policies were all maintained
> centrally, they could modify both the sendmail.te and httpd.te files as
> necessary before actually installing the packages.  Otherwise they have
> to wait to install the package to get the policy, and installing it
> might fail due to the policy not compiling or something due to changes
> in mta.te.

httpd uses mta.te?  It's a seriously bad name, then.


Bill

Follow-Ups:
- Re: FC2 and FC1 and common home
  - From: Colin Walters

References:
- FC2 and FC1 and common home
  - From: Michael A. Peters
- Re: FC2 and FC1 and common home
  - From: Shahms King
- Re: FC2 and FC1 and common home
  - From: Colin Walters
- Re: FC2 and FC1 and common home
  - From: Gene C.
- Re: FC2 and FC1 and common home
  - From: Jeremy Katz
- Re: FC2 and FC1 and common home
  - From: Colin Walters
- Re: FC2 and FC1 and common home
  - From: Jeremy Katz
- Re: FC2 and FC1 and common home
  - From: Colin Walters

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]