[redhat-lspp] RBAC Roles
schaufler-ca.com - Casey Schaufler
casey at schaufler-ca.com
Fri Sep 23 21:14:44 UTC 2005
Stephen Smalley <sds at tycho.nsa.gov> wrote:
> To clarify, I think we need to focus on making incremental improvements
> to what exists to meet the actual requirements, not completely
> overhauling what exists to meet wishlist features. I further disagree
> with moving the auditallow/dontaudit functionality from SELinux policy
> into auditctl and the audit subsystem.
In real deployments of LSPP systems the audit
configuration changes frequently. There are a
number of reasons for this, including resource
limitations (e.g. low on audit space), site policy
changes (e.g. based on Terror color), and
suspected loss of trustworthyness of individuals.
Wiring the audit configuration into the policy
definition may serve the mechanism, but is
hardly the "right thing to do" if you're
looking at serving the customer.
It is possible that refering to the SELinux
enforcement configuration as the "policy"
is the root cause of this issue. Maybe not.
------------------------
Casey Schaufler
casey at schaufler-ca.com
650.906.1780
More information about the redhat-lspp
mailing list