From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from msux-gh1-uea02.nsa.gov (msux-gh1-uea02.nsa.gov [63.239.67.2]) by tarius.tycho.ncsc.mil (8.13.1/8.13.1) with ESMTP id n5IDms9i025438 for ; Thu, 18 Jun 2009 09:48:54 -0400 Received: from manicmethod.com (localhost [127.0.0.1]) by msux-gh1-uea02.nsa.gov (8.12.10/8.12.10) with ESMTP id n5IDnLDv018982 for ; Thu, 18 Jun 2009 13:49:21 GMT Message-ID: <4A3A45B0.4070803@manicmethod.com> Date: Thu, 18 Jun 2009 09:48:32 -0400 From: Joshua Brindle MIME-Version: 1.0 To: Daniel J Walsh CC: SE Linux Subject: Re: This patch add seusers support to SELinux References: <4A11A6EE.3070903@redhat.com> <4A3A4366.3010606@manicmethod.com> In-Reply-To: <4A3A4366.3010606@manicmethod.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov Joshua Brindle wrote: > Daniel J Walsh wrote: >> The idea here is to break the seusers file up into lots of little >> seusers file that can be user specific, also adds the service field to >> be used by tools like pam_selinux to choose which is the correct context >> to log a user in as. >> >> Patch was added to facilitate IPA handing out SELinux content for >> selection of roles at login. >> > > This patch does not affect the behavior of getseuserbyname(), how is > this expected to work with existing applications? > Also, what is the format of this file? What should service be to test this on F11? -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.