[redhat-lspp] Re: RHEL5 Kernel with labeled networking
Linda Knippers
linda.knippers at hp.com
Tue Oct 3 16:46:10 UTC 2006
James Morris wrote:
> On Tue, 3 Oct 2006, Linda Knippers wrote:
>
>
>>Dumb question....should compat_net be "1" by default?
>
>
> Ideally, no, the new secmark controls were posted in May and everyone
> should be using them. I only added the compat_net option to help
> with transition, and it could disappear at any time.
Just seems like we're pretty early in the transition if updating
the kernel requires a new policy to not suffer a major regression,
but then I don't really understand all the secid reconciliation stuff.
-- ljk
More information about the redhat-lspp
mailing list