[RFC] change policy loading to initramfs
Stephen Smalley
sds at tycho.nsa.gov
Thu Jan 24 16:19:14 UTC 2008
On Thu, 2008-01-24 at 11:11 -0500, Bill Nottingham wrote:
> Stephen Smalley (sds at tycho.nsa.gov) said:
> > Hmm...Chad Sellers was working on similar support for Ubuntu, but did it
> > by adding a -i option to the load_policy program to perform an initial
> > policy load so that you can just execute it from a script rather than
> > requiring a direct patch to nash or anything else. cc'ing him. The
> > load_policy -i support is upstream and should be in Fedora devel /
> > rawhide too.
>
> This would still need to be done chroot()ed into the system (there's no
> way to set the base path for filename resoution), correct?
Not presently.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list