> SELinux will not allow a system daemon to load files [...] from a user's home directory
Having read some more opinions about SELinux being useless in the postgres announce thread, I must say that I consider this a very nice effect of it. During its early days I spent some time writing SELinux policy for applications, and was appalled at the many violations against POLA that a typical one has.
If wider deployment of SELinux and its reference policy helps foster a more secure programming culture: bring it on.
> [...] pack a colorimeter and IT 8.7 target into the "booth box" when heading to community Linux shows.
The USD 100 or so, could also be money well spent for a local LUG or hackerspace.