On Wed, Sep 17, 2008 at 15:39:58 -0400, Chris Snook <csnook at redhat.com> wrote: > > I suspect you'll find that using a strict SELinux policy (instead of the > default targeted policy) is probably much more manageable than dealing > with signed code. The strict and targeted policies are now the same (under the name targeted).