On Tuesday 27 November 2007 16:27:25 Martin Ebourne wrote:
In the absence of an ability for selinux to know if pam_ssh is
configured
then at least having the policy in the module would only activate it if
pam_ssh was installed.
This is why we have selinux booleans. Its to swing permissions in and out
depending on what's installed.
-Steve