Thread (15 messages) 15 messages, 5 authors, 2023-03-10

Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT

From: Paul Moore <paul@paul-moore.com>
Date: 2022-09-26 21:41:18
Also in: selinux 

On Mon, Sep 26, 2022 at 2:03 PM Jeff Xu [off-list ref] wrote:
Thanks for details about the unconfined_t domain, this is one option.

IMHO: between permissive domain + audit log and unconfined_t, there might
be room for letting each permissive domain decide its own audit logging
strategy. The reasons are ...
I'm sorry, but I don't want to support a permissive mode that doesn't
generate denial records in the upstream kernel at this point in time.

-- 
paul-moore.com
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help