default user context on fedorapeople.org
Konstantin Ryabitsev
icon at fedoraproject.org
Tue Mar 27 21:33:26 UTC 2012
On Tue, 2012-03-27 at 17:17 -0400, seth vidal wrote:
> And that is the more or less it - does anyone have any
> suggestions/thoughts?
You don't have to limit yourself to picking between user_u or guest_u.
You can create another role, such as "fedorauser_u" that is basically
guest_u, except you can then add specific policies via SELinux roles,
such as:
irc_role(fedorauser_t, fedorauser_r)
Which should let them run an IRC client such as irsii.
On the other hand, just setting user_u is a good start and a lot less
work.
Best,
--
Konstantin Ryabitsev
Systems Administrator, Kernel.org
Montréal, Québec
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 665 bytes
Desc: This is a digitally signed message part
URL: <http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20120327/22f39dff/attachment.sig>
More information about the infrastructure
mailing list