Drawing lessons from fatal SELinux bug #1054350

Kevin Fenzi kevin at scrye.com
Fri Jan 24 18:19:48 UTC 2014

On Fri, 24 Jan 2014 09:41:13 -0800
Adam Williamson <awilliam at redhat.com> wrote:

> AIUI there is/was a long-term plan to integrate this as core
> functionality using btrfs snapshots - in fact that was one of the
> major attractions of the idea of switching to btrfs-by-default in the
> first place. I believe those involved didn't think the LVM-based
> implementation was clean/robust enough to use by default, but a
> btrfs-based implementation would be. Do correct me if I'm wrong.

I don't think snapshots are a partcularly good solution, unless there's
some way to only roll back the rpm/yum transaction without also rolling
back unrelated changes. 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20140124/36d0ea3b/attachment.sig>

More information about the devel mailing list