[redhat-lspp] secadm_[rt] in 2.2.29-2 policy
Michael C Thompson
thompsmc at us.ibm.com
Mon Apr 10 19:46:23 UTC 2006
Hi Dan,
Somewhere between pre-FC5 and the current MLS policy (2.2.29-2), the
secadm role and type have lost a significant chunk of privilages, namely
as secadm_t, you can no longer look in /root, or navigate to /home
directories. This seems the make secadm pretty useless.
Was this change intentional, a side-effect of another change, or just an
in-transition state?
Thanks,
Mike
More information about the redhat-lspp
mailing list