From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from goalie.tycho.ncsc.mil (goalie [144.51.31.250]) by tarius.tycho.ncsc.mil (8.13.1/8.13.1) with ESMTP id rADJ1vJN008422 for ; Wed, 13 Nov 2013 14:01:57 -0500 Received: by mail-ea0-f170.google.com with SMTP id q10so391644eaj.29 for ; Wed, 13 Nov 2013 11:01:53 -0800 (PST) Message-ID: <1384369308.30406.70.camel@d30> Subject: Re: SELinux Coloring book? From: Dominick Grift To: "Radzykewycz, T (Radzy)" Cc: Daniel J Walsh , Bruno Wolff III , Tony Scully , SELinux Date: Wed, 13 Nov 2013 20:01:48 +0100 In-Reply-To: <33006C99F5A5194A9B7A7715DFA3E383B53C2323@ALA-MBB.corp.ad.wrs.com> References: <52839664.1080600@redhat.com> <1bddae0010527398cc85d89bb8f1aad9.squirrel@host290.hostmonster.com> <20131113171326.GA13491@wolff.to> <1384364110.30406.53.camel@d30> ,<5283C07D.1010802@redhat.com> <33006C99F5A5194A9B7A7715DFA3E383B53C2323@ALA-MBB.corp.ad.wrs.com> Content-Type: text/plain; charset="UTF-8" Mime-Version: 1.0 Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov On Wed, 2013-11-13 at 18:37 +0000, Radzykewycz, T (Radzy) wrote: > General question: > > Does the "coloring book" really need to cover all aspects of security, and cover them in depth? If this is a kindergarten grade level introduction, then explaining all the nuances of priority may be too much to ask. If it is for more experienced audiences, then why does it need to be a coloring book? > > See Spot. See Spot run. See Spot manage the pack's dominance hierarchy through vociferous displays of aggressive behavior. Run, Spot, run! > Yes, good point But why favor one aspect over another? Also in SELinux everything is associated one way or another. If you leave out pieces, then you end up with loose ends. Loose end can be confusing If you're comprehensive, then pieces tend to fall into place That helps getting the overall big picture -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.