Non responsive state for systemd
Jamie Nguyen
j at jamielinux.com
Mon Mar 11 23:07:51 UTC 2013
On 11/03/13 22:57, Richard W.M. Jones wrote:
> On Mon, Mar 11, 2013 at 03:28:47AM +0100, Kevin Kofler wrote:
>> Lennart Poettering wrote:
>>> True thing. libselinux is a library we really really should avoid
>>> linking against.
>>
>> Why the sarcasm? SELinux and libselinux only ever cause problems, why can't
>> we finally kick them out of Fedora?
>
> This is a tad unfair. SELinux is (more than theoretically) a last
> line of defence against some exploits, and for at least a few years
> I've been able to run my laptop with SELinux set to enforcing, only
> disabling it occasionally to do specific tasks or when investigating
> permissions problems.
>
> Rich.
I agree. Years ago pretty much every single Fedora guide would recommend
disabling SELinux, but these days (after years of refining the default
policy) SELinux is rock solid and usually just stays out of the way.
--
Jamie Nguyen
More information about the devel
mailing list