Posted May 5, 2006 5:13 UTC (Fri) by alogghe
In reply to: SELinux shortcomings
Parent article: The AppArmor debate begins
Yes we would need security enforced at different levels/files in the mount points and selinux would be too course grained (just on/off at the mount point itself).
Network based filesystems provide a great deal of flexibility that we need here in the trenches ;)
Heh it's funny how some of us see the different policy against the different pathname/same share as a useful feature and it makes other people paranoid.
It's dangerous I agree but so is any powertool.
to post comments)