Feature Request "secure by default"

Rahul Sundaram sundaram at fedoraproject.org
Tue Jun 12 07:13:19 UTC 2007

Matej Cepl wrote:
> On 2007-06-11, 12:32 GMT, Simon Jolle wrote:
>> It is too complicated. Nobody have the knowledge to deploy 
>> custom SELinux profiles. We run third-party applications like 
>> Websphere, Oracle and other proprietary stuff.
> It's hard to believe that we don't have a policy for stuff like 
> that -- after all these are our biggest customers' apps (I 
> suppose). Chmm, strange.

We don't require policy for these programs since they are supposed to 
run in unconfined (ie) classic DAC security mode.


More information about the fedora-list mailing list