Hi,
Just a quick update on this in case any one was curious...turns out that the
audit system was not in his kernel config. Its working now.
-Steve
On Monday 19 November 2007 01:23:25 pm Stephen Smalley wrote:
On Sat, 2007-11-17 at 04:31 -0500, Gene Heskett wrote:
Greetings;
FC6
Those of you who follow the SELinux and/or LSM mailing lists know there is
work currently underway to provide static or fallback network peer labels for
use when traditional labeled networking (CIPSO or Labeled IPsec) is not
present. For the same reasons that NetLabel or Labeled IPsec
Paul Moore wrote:
Those of you who follow the SELinux and/or LSM mailing lists know there is
work currently underway to provide static or fallback network peer labels for
use when traditional labeled networking (CIPSO or Labeled IPsec) is not
present. For the same reasons that NetLabel or
I just noticed that the IPsec auditing code does not appear to audit the
netmask for the selector source and destination addresses in
xfrm_audit_common_policyinfo(). Before I threw a patch together I thought I
would check to see if there was a reason for this that I am missing ...
--
paul
On Wednesday 21 November 2007 4:26:57 pm Paul Moore wrote:
On Wednesday 21 November 2007 4:21:26 pm Linda Knippers wrote:
Paul Moore wrote:
For reference, here are four examples of the new message types pulled
from a Fedora Rawhide machine running this patch:
* adding new fallback