In mls enforcing mode will non-SystemLow processes be able to
generate syslog(3) entries? On my bastardized FC6+LSPP system,
ps -ZC syslogd
LABEL PID TTY TIME CMD
system_u:system_r:syslogd_t:SystemLow-SystemHigh 1725 ? 00:00:00 syslogd
but
ls -Z /var/log/messages
-rw------- root root system_u:object_r:var_log_t:SystemLow /var/log/
messages
implying that SystemHigh processes can log to a SystemLow file.
joe
--
redhat-lspp mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/redhat-lspp
