[rsbac] Fedora Core 2
Andrea Pasquinucci
cesare at ucci.it
Mon Aug 30 09:12:19 CEST 2004
On Fri, Aug 27, 2004 at 10:48:57AM +0200, Amon Ott wrote:
* On Freitag, 27. August 2004 10:25, Andrea Pasquinucci wrote:
* > I will need to implement RSBAC over Fedora Core 2 (I tried Selinux
* > but...., and in this case I cannot change distribution).
* >
* > Has anyone tried? Any hints, suggestions?
*
* I never tried, but it should work straight forward. You can even use
* RSBAC and SELinux in parallel, if you are mad enough to try.
no thanks!
*
* > I should change as little as possible mantaining the highest
* > compatibility with the default kernel and distribution. The best would
* > be to be able to build rpms for rsbac-kernel and rsbac-tools so to
* > install everything on many machines easily with fedora management tools.
* > Of course, configuration is another story (though I have some ideas on
* > how to do it without too much pain).
*
* E.g. Mandrake has RSBAC RPMs.
*
* If you have working RPMs for Fedora, I would like to put them up for
* public use. Better still, try to get them integrated into official
* Fedora.
This I think will be difficult, at least for the time being. I thought a
moment about it, and I think that the first aim could be to get it in a
rpm archive as an alternative kernel. First step, at least what I need
it for, is for servers based on FC2, in practice minimal FC2
installation plus a couple of programs (for example apache+php+mysql, or
postfix+cyrus-imap and similar; no X11, very few users none of them at
the console etc.etc.). Based on this, I am going to start from your
prepatched kernel, I had previous experience in trying to add patches to
the heavily prepatched RedHat kernels, and it is not always so easy.
Andrea
--
Andrea Pasquinucci http://www.ucci.it/
PGP key is at http://www.ucci.it/ucci_pub_key.asc
fingerprint = 569B 37F6 45A4 1A17 E06F CCBB CB51 2983 6494 0DA2
More information about the rsbac
mailing list