logo_kerberos.gif

Release Meeting Minutes/2012-11-13

From K5Wiki
< Release Meeting Minutes
Revision as of 13:53, 26 November 2012 by TomYu (talk | contribs) (New page: {{minutes|2012}} Will Fiveash, Greg Hudson, Ben Kaduk, Simo Sorce, Zhanna Tsitkov, Tom Yu ;Greg: Simo, Red Hat uses SELinux or apparmor? ;Simo: SELinux. Depends on label. ;Greg: If I ma...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search


Will Fiveash, Greg Hudson, Ben Kaduk, Simo Sorce, Zhanna Tsitkov, Tom Yu

Greg
Simo, Red Hat uses SELinux or apparmor?
Simo
SELinux. Depends on label.
Greg
If I make a copy of a binary...?
Simo
File creation might. Normal users are unconfined ... transition rule
Tom
So normal user running slapd is unconfined?
Simo
in Fedora
Greg
OpenLDAP exits before listening
Greg
Nico looking at interposer design simplification. We require interposers to modify token on import... accept should do it as well.
Simo
Need copies to merge OID

remote client could bypass interposer by prefixing stuff to OID

Simo
testing tarball?
Tom
Alpha probably this week. Beta next week.

CAMMAC

Simo
Does stuff like AD-SIGNPATH etc. need to be public?
Tom
cross-implementation interop in a mixed deployment realm.

Tom to look into publishing S4U2Proxy as an RFC -- will talk to Microsoft