On Wed, 2005-06-22 at 13:29 -0600, Tom Lisjac wrote:
Woudn't it be better to simply stop pushing SELinux updates to
versions rather then continuing to apply new and possibliy
incompatible features of the newer release?
I don't think that the breakage was intentional/expected. As I
understand it, Dan only pushes updated policies to older releases as
needed to fix specific bugs or to deal with newer kernels (which may
introduce newer SELinux permission checks, and thus require new policy
allowing those permissions). I'd view the breakage as a bug.
National Security Agency