Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux

From: Guido Trentalancia <guido trentalancia net>
To: "networkmanager-list gnome org" <networkmanager-list gnome org>
Subject: Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
Date: Thu, 29 Sep 2016 17:33:59 +0200

On Thu, 29/09/2016 at 17.29 +0200, Michael Biebl wrote:

Am 29.09.2016 um 17:11 schrieb Guido Trentalancia:


Run-time checks are wrong because they leave the filesystem in a
state that is not usable when SELinux goes back into enforcing
mode.

Compile-time checks have no side effects and in any case are better
than the bug!


Debian enables selinux support during compile time but we do not
enable
selinux by default.

So the side-effect of this patch would be that suddenly NM would use
files instead of symlinks on Debian.


This is not a side-effect in my opinion, but an added benefit because
there is no good reason for using a symbolic link.

Guido

Follow-Ups:
- Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Michael Biebl

References:
- [PATCH] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Guido Trentalancia
- [PATCH v2] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Guido Trentalancia
- [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Guido Trentalancia
- Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Jetchko Jekov
- Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Guido Trentalancia
- Re: [PATCH v3] Do not use /etc/resolv.conf symbolic links on SELinux
  - From: Michael Biebl

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]