From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <4E9F0DC9.7070703@redhat.com> Date: Wed, 19 Oct 2011 13:50:01 -0400 From: Daniel J Walsh MIME-Version: 1.0 To: Joshua Brindle CC: "Christopher J. PeBenito" , Stephen Smalley , David Windsor , SELinux Subject: Re: I would like to change the behavior of MCS label creations in directory. References: <4E7B9233.6080609@redhat.com> <1316723465.2354.6.camel@moss-pluto> <4E7B9B43.9000400@redhat.com> <1316723821.2354.9.camel@moss-pluto> <1316724121.2354.12.camel@moss-pluto> <4E7C9F3D.9030704@redhat.com> <1316790421.10259.70.camel@moss-pluto> <1317139611.22218.9.camel@moss-pluto> <4E82123C.4070406@redhat.com> <4E985BFB.1000806@redhat.com> <4E9D7267.9060004@tresys.com> <4E9EED35.8070408@manicmethod.com> <4E9F0BBE.8070105@redhat.com> <4E9F0D47.5060304@manicmethod.com> In-Reply-To: <4E9F0D47.5060304@manicmethod.com> Content-Type: text/plain; charset=ISO-8859-1 Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 10/19/2011 01:47 PM, Joshua Brindle wrote: > Daniel J Walsh wrote: >> We can parse and you are allowed to use process in both places. > > Even still, SELinux does not internally (either in the security > server or the compiler) know what a process is and some users of > the compiler have a different concept of subject than Linux does > (e.g., Xen) The latest syntax is what Eric wrote and he is away on Vacation right now, so I think we should wait until he comes back to get his point of view. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6fDckACgkQrlYvE4MpobOBcgCgzGH1Xhq3kKq7q+1so7oXDYBi LCIAoNY3HnfEZBWd2GFHRpAjkrIxF6M8 =yxOQ -----END PGP SIGNATURE----- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.