container/container-medium-19.ks container/container-medium-20.ks container/container-minimal-19.ks container/container-minimal-20.ks

Matthew Miller mattdm at
Thu Sep 19 19:10:43 UTC 2013

On Thu, Sep 19, 2013 at 02:11:05PM -0400, Daniel J Walsh wrote:
> In a container image, you do not need to install selinux-policy*, since
> selinux policy is not supported within the container.  From the containers
> point of view
> SELinux is disabled.
> Because of this you can probably also eliminate policycoreutils, although
> other packages might suck it back in.

Yeah, the "medium" container is kind of a work-in-progress on this front. I
thought I put selinux-policy on the minus list of packages -- I'll take a
look at what's pulling it in. 

I'm really interested in your thoughts on how selinux might work in this
brave new world. :)

Matthew Miller  ☁☁☁  Fedora Cloud Architect  ☁☁☁  <mattdm at>

More information about the cloud mailing list