From: "JosA MarAa Alonso (nimiux)" <nimiux@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] gentoo commit in xml/htdocs/proj/es/hardened/selinux: hb-using-install.xml
Date: Tue, 8 May 2012 10:17:28 +0000 (UTC) [thread overview]
Message-ID: <20120508101728.321A32004B@flycatcher.gentoo.org> (raw)
nimiux 12/05/08 10:17:28
Modified: hb-using-install.xml
Log:
Update on SELinux docs (mainly /selinux versus /sys/fs/selinux state of affairs). Reverting change from /sys/fs/selinux to /selinux until portage is stable. Adding back in sandbox fix, still needed, even with /selinux.
Revision Changes Path
1.11 xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml
file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml?rev=1.11&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml?rev=1.11&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml?r1=1.10&r2=1.11
Index: hb-using-install.xml
===================================================================
RCS file: /var/cvsroot/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- hb-using-install.xml 2 May 2012 21:18:04 -0000 1.10
+++ hb-using-install.xml 8 May 2012 10:17:28 -0000 1.11
@@ -4,11 +4,11 @@
<!-- The content of this document is licensed under the CC-BY-SA license -->
<!-- See http://creativecommons.org/licenses/by-sa/1.0 -->
-<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml,v 1.10 2012/05/02 21:18:04 nimiux Exp $ -->
+<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/proj/es/hardened/selinux/hb-using-install.xml,v 1.11 2012/05/08 10:17:28 nimiux Exp $ -->
<sections>
-<version>21</version>
-<date>2012-04-29</date>
+<version>24</version>
+<date>2012-05-07</date>
<section>
<title>Instalar Gentoo (Hardened)</title>
@@ -302,14 +302,13 @@
<c>cp /bin/hostname /bin/hostname.old</c>.
</li>
<!--
- TODO When the fix is accepted in the portage code and that portage version is
- stabilized, the change is not needed anymore.
+ TODO When portage fix is stabilized, convert docs to /sys/fs/selinux
-->
<li>
Edite <path>/etc/sandbox.conf</path> y añada
- <path>/sys/fs/selinux/context</path> al parámetro <c>SANDBOX_WRITE</c>.
- Esto es necesario actualmente para evitar la incidencia
- <uri link="https://bugs.gentoo.org/410687">410687</uri>.
+ <c>SANDBOX_WRITE="/sys/fs/selinux/context"</c>. Esto es necesario
+ temporalmente hasta que la corrección necesaria (incluida en Portage
+ pero todavía no estable) esté disponible.
</li>
</ul>
@@ -425,7 +424,7 @@
<pre caption="Habilitar las opciones del sistema de ficheros específicas de selinux">
<comment># El montaje de udev se debe al bug #373381</comment>
udev /dev tmpfs rw,rootcontext=system_u:object_r:device_t,seclabel,nosuid,relatime,size=10m,mode=755 0 0
-none /sys/fs/selinux selinuxfs defaults 0 0
+none /selinux selinuxfs defaults 0 0
</pre>
<note>
@@ -442,7 +441,7 @@
<p>
Una vez realizados los cambios mencionados arriba, reinicie su sistema.
Asegúrese de que ahora está corriendo un núcleo Linux con SELinux
-habilitado (el sistema de ficheros <path>/sys/fs/selinux</path> deberá estar
+habilitado (el sistema de ficheros <path>/selinux</path> deberá estar
montado). No se preocupe, todavía no está activado SELinux.
</p>
next reply other threads:[~2012-05-08 10:17 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-05-08 10:17 JosA MarAa Alonso (nimiux) [this message]
-- strict thread matches above, loose matches on Subject: below --
2014-03-07 10:45 [gentoo-commits] gentoo commit in xml/htdocs/proj/es/hardened/selinux: hb-using-install.xml JosA MarAa Alonso (nimiux)
2013-12-20 14:19 JosA MarAa Alonso (nimiux)
2013-10-26 15:46 JosA MarAa Alonso (nimiux)
2013-04-16 15:58 JosA MarAa Alonso (nimiux)
2012-12-04 16:20 JosA MarAa Alonso (nimiux)
2012-08-18 11:47 JosA MarAa Alonso (nimiux)
2012-07-17 18:19 JosA MarAa Alonso (nimiux)
2012-07-17 15:06 JosA MarAa Alonso (nimiux)
2012-06-25 14:12 JosA MarAa Alonso (nimiux)
2012-06-15 18:32 JosA MarAa Alonso (nimiux)
2012-05-28 11:35 JosA MarAa Alonso (nimiux)
2012-04-07 19:10 JosA MarAa Alonso (nimiux)
2011-12-29 12:57 JosA MarAa Alonso (nimiux)
2011-12-12 22:28 JosA MarAa Alonso (nimiux)
2011-08-16 16:56 JosA MarAa Alonso (nimiux)
2011-06-09 18:45 JosA MarAa Alonso (nimiux)
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20120508101728.321A32004B@flycatcher.gentoo.org \
--to=nimiux@gentoo.org \
--cc=gentoo-commits@lists.gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox