Quick Links

Re: Adding support for SE-Linux security

From:	Bruce Momjian <bruce(at)momjian(dot)us>
To:	Stephen Frost <sfrost(at)snowman(dot)net>
Cc:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Robert Haas <robertmhaas(at)gmail(dot)com>, Magnus Hagander <magnus(at)hagander(dot)net>, Chad Sellers <csellers(at)tresys(dot)com>, "David P(dot) Quigley" <dpquigl(at)tycho(dot)nsa(dot)gov>, Josh Berkus <josh(at)agliodbs(dot)com>, KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com>, jd <jd(at)commandprompt(dot)com>, David Fetter <david(at)fetter(dot)org>, Itagaki Takahiro <itagaki(dot)takahiro(at)oss(dot)ntt(dot)co(dot)jp>, KaiGai Kohei <kaigai(at)kaigai(dot)gr(dot)jp>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: Adding support for SE-Linux security
Date:	2009-12-14 13:45:24
Message-ID:	200912141345.nBEDjOM09735@momjian.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Stephen Frost wrote:
> * Bruce Momjian (bruce(at)momjian(dot)us) wrote:
> > I am not replying to many of these emails so I don't appear to be
> > brow-beating (forcing) the community into accepting this features. I
> > might be brow-beating the community, but I don't want to _appear_ to be
> > brow-beating. ;-)
>
> My apologies if I come across this way- I don't intend to... But I'm

You are fine. I was just saying that at a time I was one of the few
loud voices on this, and if this is going to happen, it will be because
we have a team that wants to do this, not because I am being loud. I
see the team forming nicely.

> also very enthusiastic about this. Also, it's become a much more
> personal issue for me due to this:
>
> http://csrc.nist.gov/news_events/documents/omb/draft-omb-fy2010-security-metrics.pdf
>
> OMB is now looking to include label-based security in their metrics.
> This directly impacts some of the PG-based systems I run.

Ah, very interesting, and good.

--
Bruce Momjian <bruce(at)momjian(dot)us> http://momjian.us
EnterpriseDB http://enterprisedb.com

+ If your life is a hard drive, Christ can be your backup. +

In response to

Re: Adding support for SE-Linux security at 2009-12-13 13:32:17 from Stephen Frost

Responses

Re: Adding support for SE-Linux security at 2009-12-15 03:21:06 from Stephen Frost

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Stephen Frost	2009-12-14 13:47:14	Re: Row-Level Security
Previous Message	Fujii Masao	2009-12-14 13:43:58	Re: Streaming replication and non-blocking I/O