the ref-policy is based on an outdated concept in ubuntu
Bug #254229 reported by
Rorschach
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| selinux (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: selinux
On ubuntu the refpolicy is based on the outdated concept of a difference between targeted and strict. This approach isn't used anymore.
Todays selinux refpolicy is just having a targeted style. If you want to have a strict style you just have to remove the unconfined module.
Please check the Reference Policy project page: http://
Revision history for this message
| Rorschach (r0rschach) wrote | #1 |
| Changed in selinux (Ubuntu): | |
| status: | New → Confirmed |
To post a comment you must log in.
Okay this seems not the case what I wrote above. The problem seems that the description in the /etc/selinux/config file is wrong.
It suggests using refpolicy-strict or -targeted to use. But if doing so you can't boot into the system anymore just the busybox because selinux halts the booting when not finding a correct policy.