[redhat-lspp] Xinetd patches for selinux context configuration
Steve Grubb
sgrubb at redhat.com
Wed Nov 29 21:29:54 UTC 2006
On Wednesday 29 November 2006 16:14, James Antill wrote:
> Ok, this patch doesn't do any bounding then.
> I've currently left the old config. context stuff in atm. in case we
> want to change that to specify the MLS bound, it's easier for me. But if
> this is fine as is I'll drop that part before I hand it off to Steve.
If we are adding a parser to xinetd, it needs to check that the context it
read is indeed valid. Also, xinetd does an integrated check in check_entry(),
confparse.c. It needs to do some paranoid checks that they are not specifying
a label when labeled networking flag is not given.
-Steve
More information about the redhat-lspp
mailing list