PERFORCE change 23059 for review

Chris Vance cvance at
Thu Jan 2 20:21:50 GMT 2003

Change 23059 by cvance at cvance_laptop on 2003/01/02 12:21:49

	Misc. updates to todo list

Affected files ...

.. //depot/projects/trustedbsd/mac/sys/security/sebsd/TODO#2 edit

Differences ...

==== //depot/projects/trustedbsd/mac/sys/security/sebsd/TODO#2 (text+ko) ====

@@ -19,21 +19,18 @@
   SELinux and should be resync'd, probably along with the rest of the AVC
   and Security Server.
-* Convert sebsd_enforcing and sebsd_toggle back to sysctls.  These were
-  sysctls, then I coverted them to system calls, now I think they should
-  be sysctls again.  Perhaps instead of the SELinux toggle
-  semantics, the enforcing program should be specific "on" vs "off"?
+* Provide user-space tools for load_policy, enforcing, etc.
 * Port/write newrole application
 * Port/write run_init application
-* Modify login to query permitted roles
-* Add syscall so policy my be reloaded on a live system
+* Generate a table comparing SELinux and TrustedBSD hooks and coverage
 * Fix policy
   - Fix existing policy
   - Remove unused domains and policy components
+  - newsyslog is busted
+  - cron has issues
To Unsubscribe: send mail to majordomo at
with "unsubscribe trustedbsd-cvs" in the body of the message

More information about the trustedbsd-cvs mailing list