Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Mon, 2017-02-13 at 16:18 +0100, Tobias Markus wrote: > On Sun, 2017-02-12 at 23:13 +0100, Nicolas Iooss wrote: > > On Sun, Feb 12, 2017 at 6:43 PM, Tobias Markus > > wrote: > > > > > Hi, > > > > > > As some of you might know, the question of enabling SELinux > > > support

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

Le lundi 13 février 2017 16:26:46 CET Tobias Markus a écrit : > Enabling the audit/SELinux > config option in itself is not really a maintenance burden. Userspace tools, SE policies... the 'users interested in trying out SELinux' won't do that. >but wouldn't you agree that the Wiki page asking

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

Hi, On Sun, 2017-02-12 at 20:53 +0100, SET wrote: > Le dimanche 12 février 2017 18:43:22 CET Tobias Markus a écrit : > > I would be glad if Arch Linux's official kernel could support SELinux > > again this way! > > https://lists.archlinux.org/pipermail/arch-general/2014-March/035679.html > >

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Sun, 2017-02-12 at 23:13 +0100, Nicolas Iooss wrote: > On Sun, Feb 12, 2017 at 6:43 PM, Tobias Markus wrote: > > > Hi, > > > > As some of you might know, the question of enabling SELinux support in > > the official Arch Linux kernel package has been brought up a number of >

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Sun, 2017-02-12 at 14:02 -0700, Leonid Isaev wrote: > On Sun, Feb 12, 2017 at 06:43:22PM +0100, Tobias Markus wrote: > > I would be glad if Arch Linux's official kernel could support SELinux > > again this way! > > AFAIR, coreutils and many other things need to be rebuilt to support selinux. >

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Sun, Feb 12, 2017 at 6:43 PM, Tobias Markus wrote: > Hi, > > As some of you might know, the question of enabling SELinux support in > the official Arch Linux kernel package has been brought up a number of > times. The main issue that has been pointed out the previous time

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Sun, Feb 12, 2017 at 08:53:19PM +0100, SET wrote: > Most users don't need SELinux/AppArmor or anything that protects them from > themselves; Not to nitpick, but given all the recent talk of things like gaping Webkit vulnerabilities I think the benefits of adopting something like AppArmor

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

On Sun, Feb 12, 2017 at 06:43:22PM +0100, Tobias Markus wrote: > I would be glad if Arch Linux's official kernel could support SELinux > again this way! AFAIR, coreutils and many other things need to be rebuilt to support selinux. -- Leonid Isaev

Re: [arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

Le dimanche 12 février 2017 18:43:22 CET Tobias Markus a écrit : > I would be glad if Arch Linux's official kernel could support SELinux > again this way! >https://lists.archlinux.org/pipermail/arch-general/2014-March/035679.html Thank you for the link you posted. I went through most of the

[arch-general] Revisiting the SELinux/audit question: Disabling audit on the kernel command line

Hi, As some of you might know, the question of enabling SELinux support in the official Arch Linux kernel package has been brought up a number of times. The main issue that has been pointed out the previous time was that enabling SELinux depends on CONFIG_AUDIT which is considered unnecessary or