Re: wish-list item for selinux policy analyss

[Luke Kenneth Casson Leighton <lkcl@xxxxxxxx>]

On Wed, Jun 29, 2005 at 06:10:09PM -0700, Casey Schaufler wrote:
> >  wrong way round, casey.
> > 
> >  intent of wish-list item is to be able to say "this
> > door
> >  hasn't been used for a year, let's brick it up".

> I get it now. My brain was still in the
> context of reducing the size of the
> policy, 

 this could help - albeit not as much as ... okay,
 separate-message-to-list-time, i have an idea.

> and I may have made a
> connection that wasn't really there.

> If the goal is to reduce the policy
> size you might use this method
> to find rules you can remove, 

 yes.

> and
> that could be denial rules, which
> would be what I objected too.

 ah :)


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.