[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Security policy oversight needed?

On Thu, 2009-11-19 at 09:14 -0500, Owen Taylor wrote:
> It doesn't work practically: configuration for packages needs to live
> with the package. Putting gigantic amounts of configuration into the 
> %post of a kickstart file quickly becomes unmanageable. And the idea
> that we make configuration changes in the %post of the kickstart really
> falls part badly once people start upgrading their install to the next
> version of Fedora.

Which is why you do it with specifically selected policy packages, and
not trying to write out files in %post.  Create a set of policy packages
that define certain user cases, and pick from those as you construct a

Jesse Keating
Fedora -- FreedomĀ² is a feature!
identi.ca: http://identi.ca/jkeating

Attachment: signature.asc
Description: This is a digitally signed message part

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]