Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep) - Mailing list pgsql-hackers

From Peter Eisentraut
Subject Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep)
Date
Msg-id 48DA7666.80404@gmx.net
Whole thread Raw
In response to Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep)  (Joshua Drake <jd@commandprompt.com>)
Responses Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep)
Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep)
List pgsql-hackers
Joshua Drake wrote:
> I know of no one that really uses SELinux because it is a nightmare. On
> the other hand, this type of security is required to get into certain
> scary tin foil hat producing institutions.

Yeah, but do we even have the slightest bit of information about what 
exactly would be required to achieve the required levels?  And whether 
this patch does it?  And whether there would be alternative, more 
desirable ways to achieve a similar level?

I am not arguing for or against this patch now, but I would like to know 
whether someone has an agenda for it.  Without an agenda, future 
maintenance will be difficult.  Reference to standards or other public 
documents would work best to define that agenda.


pgsql-hackers by date:

Previous
From: Peter Eisentraut
Date:
Subject: Re: Proposal of SE-PostgreSQL patches (for CommitFest:Sep)
Next
From: Heikki Linnakangas
Date:
Subject: Re: FSM, now without WAL-logging