[redhat-lspp] RBAC Roles
James Morris
jmorris at namei.org
Mon Sep 26 18:34:49 UTC 2005
On Mon, 26 Sep 2005, Stephen Smalley wrote:
> Also, reloading policy isn't _that_ expensive. Rewriting a binary
> policy file might be. Looks like iptables operates by grabbing the
> entire config from the kernel, then mutating it in memory for the
> specified rules, then dropping the new config into the kernel.
Correct.
- James
--
James Morris
<jmorris at namei.org>
More information about the redhat-lspp
mailing list