On 9/15/06, Joshua Penix <[EMAIL PROTECTED]> wrote:
On Sep 15, 2006, at 9:51 AM, Lan Barnes wrote:
> The question, and I'm not sure that it's been answered, is where does
> lokkit find the rules it uses to overwrite /etc/sysconfig/iptables and
> thus clobber it? Because if one modified lokkit's input to
> customize it,
> one could use it with more granularity.
You're right, it hasn't been answered... I had to check. And the
answer is:
/etc/sysconfig/system-config-securitylevel
Unfortunately that file isn't terribly well documented, and I don't
think lokkit can get much more granular beyond "check the boxes for
these common protocols, and list everything else in this tiny 30
character horizontally scrolling input box." But it might be fun to
play with...
It looks to me like /etc/sysconfig/system-config-securitylevel is the
control file for enabling SEL. Not firewall stuff.
carl
--
carl lowenstein marine physical lab u.c. san diego
[EMAIL PROTECTED]
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
