Keeping SELinux on (was Attention: Proprietary video driver users (ATI, Nvidia, etc.))
Ralf Ertzinger
fedora at camperquake.de
Fri Feb 24 11:45:17 UTC 2006
Hi.
On Fri, 24 Feb 2006 06:42:45 -0500, Benjy Grogan wrote:
> That was my understanding of SELinux. You could run a crazy program
> that has root privileges, is hackable, has no SELinux policy, and all
> that effort was for nigh.
I think this is a question of policy. The "targeted" policy does
what you describe, it just confines specific applications. You are
free to use the reverse approach, though.
More information about the fedora-devel-list
mailing list