From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-commits+bounces-459677-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1SRUDM-0004LU-JM
	for garchives@archives.gentoo.org; Mon, 07 May 2012 20:07:24 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id EB42AE07D2;
	Mon,  7 May 2012 20:07:11 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id AA5C6E07D2
	for <gentoo-commits@lists.gentoo.org>; Mon,  7 May 2012 20:07:11 +0000 (UTC)
Received: from hornbill.gentoo.org (hornbill.gentoo.org [94.100.119.163])
	(using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTPS id C96361B4037
	for <gentoo-commits@lists.gentoo.org>; Mon,  7 May 2012 20:07:10 +0000 (UTC)
Received: from localhost.localdomain (localhost [127.0.0.1])
	by hornbill.gentoo.org (Postfix) with ESMTP id 89B14E542D
	for <gentoo-commits@lists.gentoo.org>; Mon,  7 May 2012 20:07:09 +0000 (UTC)
From: "Sven Vermeulen" <sven.vermeulen@siphos.be>
To: gentoo-commits@lists.gentoo.org
Content-type: text/plain; charset=UTF-8
Reply-To: gentoo-dev@lists.gentoo.org, "Sven Vermeulen" <sven.vermeulen@siphos.be>
Message-ID: <1336421178.de8df879dbb5c649f8f49b36c9df9d6cb4f7edd5.SwifT@gentoo>
Subject: [gentoo-commits] proj/hardened-docs:master commit in: xml/selinux/
X-VCS-Repository: proj/hardened-docs
X-VCS-Files: xml/selinux/hb-using-install.xml
X-VCS-Directories: xml/selinux/
X-VCS-Committer: SwifT
X-VCS-Committer-Name: Sven Vermeulen
X-VCS-Revision: de8df879dbb5c649f8f49b36c9df9d6cb4f7edd5
X-VCS-Branch: master
Date: Mon,  7 May 2012 20:07:09 +0000 (UTC)
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@lists.gentoo.org
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: f7b18dca-f305-4b21-a03c-1cb628c9ec2a
X-Archives-Hash: ba7c1347d89c8c4e6e47fffc84489da8

commit:     de8df879dbb5c649f8f49b36c9df9d6cb4f7edd5
Author:     Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
AuthorDate: Mon May  7 20:06:18 2012 +0000
Commit:     Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
CommitDate: Mon May  7 20:06:18 2012 +0000
URL:        http://git.overlays.gentoo.org/gitweb/?p=3Dproj/hardened-docs=
.git;a=3Dcommit;h=3Dde8df879

Reverting change from /sys/fs/selinux to /selinux, need it until Portage =
is stabilized

---
 xml/selinux/hb-using-install.xml |   26 +++++---------------------
 1 files changed, 5 insertions(+), 21 deletions(-)

diff --git a/xml/selinux/hb-using-install.xml b/xml/selinux/hb-using-inst=
all.xml
index 6a58a58..2ecf08c 100644
--- a/xml/selinux/hb-using-install.xml
+++ b/xml/selinux/hb-using-install.xml
@@ -7,8 +7,8 @@
 <!-- $Header: /var/cvsroot/gentoo/xml/htdocs/proj/en/hardened/selinux/hb=
-using-install.xml,v 1.4 2011/06/07 19:46:52 klondike Exp $ -->
=20
 <sections>
-<version>23</version>
-<date>2012-05-06</date>
+<version>24</version>
+<date>2012-05-07</date>
=20
 <section>
 <title>Installing Gentoo (Hardened)</title>
@@ -285,26 +285,10 @@ tools or configurations that apply.
     /bin/hostname.old</c>.
   </li>
   <!--
-  TODO When the fix is accepted in the portage code and that portage ver=
sion is
-  stabilized, the change is not needed anymore.
+  TODO When portage fix is stabilized, convert docs to /sys/fs/selinux
   -->
-  <li>
-    Edit <path>/etc/sandbox.conf</path> and add in
-    <path>/sys/fs/selinux/context</path> to the <c>SANDBOX_WRITE</c> par=
ameter.
-    This is currently needed to work around bug <uri=20
-    link=3D"https://bugs.gentoo.org/410687">410687</uri>.
-  </li>
 </ul>
=20
-<p>
-Previously (before <path>sys-libs/libselinux-2.1.9</path> was stabilized=
) the
-location of the SELinux file system was <path>/selinux</path>. This loca=
tion can
-still be used (the recent libselinux implementations are currently backw=
ards
-compatible with it) and, due to <uri link=3D"https://bugs.gentoo.org/147=
79">bug
-14779</uri>, is still the location to use if you do not boot with an ini=
tramfs
-that premounts <path>/sys</path>.=20
-</p>
-
 </body>
 </subsection>
 <subsection>
@@ -412,7 +396,7 @@ Next, edit <path>/etc/fstab</path> and add the follow=
ing two lines:
 <pre caption=3D"Enabling selinux-specific file system options">
 <comment># The udev mount is due to bug #373381</comment>
 udev   /dev             tmpfs        rw,rootcontext=3Dsystem_u:object_r:=
device_t,seclabel,nosuid,relatime,size=3D10m,mode=3D755  0 0
-none   /sys/fs/selinux  selinuxfs    defaults    0 0
+none   /selinux         selinuxfs    defaults    0 0
 </pre>
=20
 <note>
@@ -428,7 +412,7 @@ level, so <c>...:device_t:s0</c>.
=20
 <p>
 With the above changes made, reboot your system. Assert yourself that yo=
u are
-now running a Linux kernel with SELinux enabled (the <path>/sys/fs/selin=
ux</path> file
+now running a Linux kernel with SELinux enabled (the <path>/selinux</pat=
h> file
 system should be mounted). Don't worry - SELinux is at this point not ac=
tivated.
 </p>
=20