[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: depinit

To: Valdis.Kletnieks@xxxxxx
Subject: Re: depinit
From: Luke Kenneth Casson Leighton <lkcl@xxxxxxxx>
Date: Mon, 23 May 2005 23:37:36 +0100
Cc: Kurt Wall <kwall@xxxxxxxxxxxxx>, SE-Linux <selinux@xxxxxxxxxxxxx>
In-reply-to: <200505231758.j4NHwkxZ020399@xxxxxxxxxxxxxxxxxxxxxxx>
Mail-followup-to: Valdis.Kletnieks@xxxxxx, Kurt Wall <kwall@xxxxxxxxxxxxx>, SE-Linux <selinux@xxxxxxxxxxxxx>
References: <20050522174200.GP10156@xxxxxxxx> <200505221403.26383.kwall@xxxxxxxxxxxxx> <20050522202555.GR10156@xxxxxxxx> <200505231628.j4NGStKQ016569@xxxxxxxxxxxxxxxxxxxxxxx> <20050523171422.GQ8953@xxxxxxxx> <200505231758.j4NHwkxZ020399@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Mutt/1.5.5.1+cvs20040105i

On Mon, May 23, 2005 at 01:58:46PM -0400, Valdis.Kletnieks@xxxxxx wrote:

> On Mon, 23 May 2005 18:14:22 BST, Luke Kenneth Casson Leighton said:
> 
> >  there _is_ no "start" option or "stop" option to the service
> >  startup scripts.  if the script dies, the service is assumed to have
> >  died: the signal is caught by depinit (all signals are caught by
> >  depinit) and an "action" script e.g. /etc/depinit/sig_chld is called.
> >  
> >  if you _want_ the service to stop, you get depinit to automatically
> >  send increasingly aggressive levels of signals to the "service" script.
> > 
> >  there _is_ no stupid numbering schemes - not the stupid symlinks, and
> >  not the stupid runlevels.
> 
> This is actually irrelevant (mostly) as far as SELinux is concerned..
> 
> >  everything is _named_.  properly.
> 
> Again, mostly irrelevant..

 *whew*.

> >  the present policy - init.te, initrc.te - is therefore going
> >  to be mostly irrelevant.
> 
> Actually *looking* at the .te's shows that *most* of it will, in fact,
> still be applicable for *any* init-replacment.  The *important* part is
> that the policy address things like "can the init-process access these
> resources?" 

 okay.   much appreciated.
 
 i have a bit more confidence to try it :)

 l.


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.

Follow-Ups:
- Re: depinit
  - From: Valdis . Kletnieks

References:
- depinit
  - From: Luke Kenneth Casson Leighton
- Re: depinit
  - From: Kurt Wall
- Re: depinit
  - From: Luke Kenneth Casson Leighton
- Re: depinit
  - From: Valdis . Kletnieks
- Re: depinit
  - From: Luke Kenneth Casson Leighton
- Re: depinit
  - From: Valdis . Kletnieks

Prev by Date: Updated Policy in Sourceforge CVS
Next by Date: Re: depinit
Previous by thread: Re: depinit
Next by thread: Re: depinit
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.