[ubuntu-hardened] selinux on lucid
Joshua Brindle
method at manicmethod.com
Tue Apr 6 19:18:27 BST 2010
Peter Moody wrote:
> On Mon, Apr 5, 2010 at 1:01 PM, Kees Cook<kees at ubuntu.com> wrote:
<snip>
>>> do I open bugs on ubuntu or with tresys?
>> Probably both, I'm not sure what the most correct solution for /dev
>> should be, but I can fix the selinux-policy-default version glitch. :)
>
> So the suggestion from #selinux, to add the line:
>
> fs_use_trans devtmpfs gen_context(system_u:object_r:tmpfs_t,s0);
>
> to kernel/filesystem.te and rebuilding/reinstalling base.pp works.
> did you want me to file another bug on launchpad for this (I'm going
> to separately try to get tresys to fix it in the refpolicy)
>
Tresys is aware of the change needed for refpolicy (and the maintainer
is CC'd on this email).
More information about the ubuntu-hardened
mailing list