selinux and ppp
Stephen Smalley
sds at epoch.ncsc.mil
Fri Apr 2 12:55:45 UTC 2004
On Thu, 2004-04-01 at 23:26, Russell Coker wrote:
> I disagree. pppd is trying to write log files in /etc which is wrong. I have
> filed a bug report (see URL below), the correct solution is to put the log
> file in question somewhere else. We don't even want pppd to re-write it's
> own configuration...
>
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=118837
You can allow it to create new files under /etc/ppp while preventing it
from modifying existing files. My proposed policy changes did provide
separate types, one read-only and one read-write. Changing the
application to log elsewhere would make life simpler, but it isn't the
only way.
--
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency
More information about the fedora-test-list
mailing list