Hi, > > yes but as already said, RHEL SElinux policy should already be fine for this > > It's been a while since I looked, but when I did the RHEL5 SELinux > policy was good for nothing except very, very basic FreeRADIUS usage. > > Has that changed now? Using "sesearch" I don't for example see any > references to postgresql_t for unix socket connection, and it's not > obvious to me that the policy permits ntlm_auth to be exec'd.
perhaps I wrote my sentence lazily.....the RHEL SElinux policy SHOULD already be fine for this ;-) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
