container/container-medium-19.ks container/container-medium-20.ks container/container-minimal-19.ks container/container-minimal-20.ks
mattdm at fedoraproject.org
Thu Sep 19 19:10:43 UTC 2013
On Thu, Sep 19, 2013 at 02:11:05PM -0400, Daniel J Walsh wrote:
> In a container image, you do not need to install selinux-policy*, since
> selinux policy is not supported within the container. From the containers
> point of view
> SELinux is disabled.
> Because of this you can probably also eliminate policycoreutils, although
> other packages might suck it back in.
Yeah, the "medium" container is kind of a work-in-progress on this front. I
thought I put selinux-policy on the minus list of packages -- I'll take a
look at what's pulling it in.
I'm really interested in your thoughts on how selinux might work in this
brave new world. :)
Matthew Miller ☁☁☁ Fedora Cloud Architect ☁☁☁ <mattdm at fedoraproject.org>
More information about the cloud