[RFC] security: add iptables "security" table for MAC rules
James Morris
jmorris at namei.org
Tue Jan 29 20:51:55 UTC 2008
On Tue, 29 Jan 2008, Paul Moore wrote:
> I'm not sure if returning false and failing here is the best thing to do in
> terms of backwards compatibility. I think we need some grace period where we
> print a warning message and still allow the operation; after some period of
> time we can then remove the ability completely and force users to use the
> new "security" table.
Currently, the patch allows the use of the mangle table, so it is
backwards compatible.
--
James Morris
<jmorris at namei.org>
More information about the fedora-selinux-list
mailing list