[Fwd: [Fedora Project Wiki] Update of "Infrastructure/RFR/SELinux" by DanielWalsh]

Daniel J Walsh dwalsh at redhat.com
Mon Mar 5 14:09:31 UTC 2007 

Mike McGrath wrote:
> Dan is requesting a xen instance for use for this project.
>
> Questions I have:
> There's no way to integrate this into our current environment?  All 
> information we get from the internet is random data :-)
>
> Can you give us a better idea of how this works on the back end?  What 
> would we need as far as backups go, space, etc?
No backups, Space would simply be the size of the Minimal OS (Only need 
httpd on a server platform.) plus a small amount (< 100 MB) for storing 
and processing log files.

http://milkbones.boston.devel.redhat.com/setroubleshoot

Is what I am looking to run.

df on milkbones shows

 df
Filesystem           1K-blocks      Used Available Use% Mounted on
/dev/mapper/VolGroup00-LogVol00
                       3777168   2271320   1310880  64% /
/dev/xvda1              101086     18304     77563  20% /boot
tmpfs                   256000         0    256000   0% /dev/shm

Which is a heck of a lot more space then what I need.


>    -Mike
>
> ------------------------------------------------------------------------
>
> Subject:
> [Fedora Project Wiki] Update of "Infrastructure/RFR/SELinux" by 
> DanielWalsh
> From:
> fedorawiki-noreply at fedoraproject.org
> Date:
> Fri, 02 Mar 2007 16:57:53 -0000
> To:
> fedorawiki-noreply at fedoraproject.org
>
> To:
> fedorawiki-noreply at fedoraproject.org
>
>
> Dear Wiki user,
>
> You have subscribed to a wiki page or wiki category on "Fedora Project Wiki" for change notification.
>
> The following page has been changed by DanielWalsh:
> http://fedoraproject.org/wiki/Infrastructure/RFR/SELinux
>
> New page:
> = Project Sponsor =
> Name:  Daniel Walsh
>
> Wiki Name: SELinux Troubleshoot
>
> Fedora Account Name: Dan,Walsh
>
> Group: Red Hat Engineering
>
> Infrastructure Sponsor:
>
> == Secondary Contact info ==
>
> Name:
>
> Wiki Name:
>
> Fedora Account Name:
>
> Group:
>
> == Project Info ==
> Project Name: SELinux Troubleshoot Tool
>
> Target Audience: Fedora System Administrators
>
> Expiration Date (required): No Experation.
>
> Description/Summary:
>
> Setup a Xen Instance running a web server to help Fedora Users diagnose SELinux AVC messages
>
> Project plan (Detailed):
>
> I would like to setup a Xen instance running an apache web server, that is totally locked down by SELinux.  This web server 
> would allow users to upload SELinux audit logs.  The logs would be run through the SELinux Troubleshoot Database and suggested
> fixes would be displayed to the user.  Since this machine would be taking random data from the internet, I do not believe this
> machine should be running any other services and will be locked down with the tightest possible SELinux policy.
>
>
>
> Goals:
>
> == Specific resources needed ==
>
> FC6 or later xen instance.
>
> == Additional Info (Optional) ==
>

More information about the Fedora-infrastructure-list mailing list