Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux

[PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Venkat Yekkirala <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Joshua Brindle <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Stephen Smalley <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Joshua Brindle <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Stephen Smalley <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · James Morris <jmorris@namei.org> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Stephen Smalley <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Paul Moore <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · James Morris <jmorris@namei.org> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Paul Moore <hidden> · 2006-09-29
Re: [PATCH 7/7] secid reconciliation-v03: Enforcement for SELinux · Paul Moore <hidden> · 2006-09-29

From: James Morris <jmorris@namei.org>
Date: 2006-09-29 16:11:01
Also in: selinux

On Fri, 29 Sep 2006, Paul Moore wrote:

Unless I'm confusing something, there still may be a need for transitions
if we want to support both IPsec and NetLabel labeling on the same
connection.

I'd prefer not to support this, as it's too complicated, and CIPSO is a 
legacy protocol.

Normal IPsec protection applied to CIPSO: yes, but not IPsec labeling and 
CIPSO labeling on the same connection.



- James
-- 
James Morris
[off-list ref]

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help