From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <453CF1A5.5020200@hp.com>
Date: Mon, 23 Oct 2006 12:45:25 -0400
From: Paul Moore <paul.moore@hp.com>
MIME-Version: 1.0
To: casey@schaufler-ca.com
Cc: James Antill <jantill@redhat.com>, Stephen Smalley <sds@tycho.nsa.gov>,
        russell@coker.com.au, Daniel J Walsh <dwalsh@redhat.com>,
        selinux@tycho.nsa.gov, redhat-lspp@redhat.com
Subject: Re: [redhat-lspp] Re: MLS enforcing PTYs, sshd, and newrole
References: <20061023163904.67183.qmail@web36604.mail.mud.yahoo.com>
In-Reply-To: <20061023163904.67183.qmail@web36604.mail.mud.yahoo.com>
Content-Type: text/plain; charset=ISO-8859-1
Sender: owner-selinux@tycho.nsa.gov
List-Id: selinux@tycho.nsa.gov

Casey Schaufler wrote:
> 
> --- James Antill <jantill@redhat.com> wrote:
> 
>>On Thu, 2006-10-19 at 09:30 -0400, Stephen Smalley
>>wrote:
>> 
>>>That doesn't address sshd though.  Or gdm.  sshd
>>shouldn't be too difficult.
>>
>> Combined with adding similar code to sshd.
> 
> 
> Just a heads up, you want to do this, but
> you may not be able to get an evaluation team
> to allow it in an evaluated configuration.

Okay, I'm curious so I'll bite - why not, what problems would you expect?

-- 
paul moore
linux security @ hp

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.