From: "Justin P. Mattock" <justinmattock@gmail.com>
To: Tim <timasyk@gmail.com>
Cc: SELinux mailing list <SELinux@tycho.nsa.gov>
Subject: Re: Alternative location of policy files
Date: Wed, 24 Dec 2008 00:48:38 -0800 [thread overview]
Message-ID: <4951F766.5060901@gmail.com> (raw)
In-Reply-To: <a5e2b64d0812232358u19f442dfwd27da7f0978a508c@mail.gmail.com>
Tim wrote:
> Hello all,
>
> I was wondering, how can I change default location of SELinux policy
> from /etc/selinux/_policyname_ to some other path?
> What source codes should be modified for that?
>
> The reason to do that are:
> - I want to work with loadable policy modules --> that requires
> /etc/selinux/_policyname_ directory to be writable.
> - limitation of my filesystem having /etc directory (it is read-only filesystem)
> - unfortunately, I can not mount /etc into some other writable filesystem
>
> Kindest regards,
> Tim
>
> --
> This message was distributed to subscribers of the selinux mailing list.
> If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
> the words "unsubscribe selinux" without quotes as the message.
>
>
FWIW
SELinux reads the policy, then
enforces what it reads.
so if everything is (chmoded 0400) then you should be fine.
but could be wrong; ;/
regards;
Justin P. Mattock
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
next prev parent reply other threads:[~2008-12-24 8:48 UTC|newest]
Thread overview: 19+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-12-24 7:58 Alternative location of policy files Tim
2008-12-24 8:37 ` Justin P. Mattock
2008-12-24 8:48 ` Justin P. Mattock [this message]
2008-12-24 9:01 ` Paul Howarth
2008-12-24 9:46 ` Justin P. Mattock
2008-12-25 9:06 ` Justin P. Mattock
2008-12-25 13:36 ` Tim
2008-12-25 17:31 ` Justin P. Mattock
2008-12-27 1:33 ` Tim
[not found] ` <707f057d0812262321w4234ddabuc634f80a84cf5a9c@mail.gmail.com>
2008-12-27 7:22 ` xing li
2008-12-27 11:12 ` Daniel J Walsh
2008-12-27 12:18 ` Tim
2008-12-27 12:30 ` Daniel J Walsh
2008-12-27 12:55 ` Tim
2008-12-27 14:28 ` Daniel J Walsh
2008-12-27 22:06 ` Tim
2008-12-28 1:07 ` Tim
2008-12-28 1:26 ` Tom London
2008-12-28 2:23 ` Tim
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4951F766.5060901@gmail.com \
--to=justinmattock@gmail.com \
--cc=SELinux@tycho.nsa.gov \
--cc=timasyk@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.