Dermot Daly wrote:
> <snip>
>>>selinux takes security to insane levels though. All very well if you
>>require that, but it breaks lots of things that expect to be living in
>>the normal Unix permissions world. For most Linux use IMO you're better
>>off without it.
>>>>>>>>Niall
>>>> I admit that initially on fedora (was it FC2?) the first couple of
> policies were ridiculous and broke lots of stuff, but new policies
> came out pretty regular until it was usable
> I'm not precious about whether someone wants to use it or not, just
> giving the "official line" that the fedora project recommend.
>> Of course; the more people who use it, the more can report issues,
> leading to a better, hardened and workable policy.
>I think it was when it decided that perl apps couldn't open files, thus
the packaged awstats.pl didn't work, that I decided to request that
people not turn it on.
I'm sure if you have the patience of a saint, and commensurate time,
it's an awesome product. In the meantime, use groups and passwords ;)
L.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
