| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Joe Conway <mail(at)joeconway(dot)com> |
| Cc: | Yuli Khodorkovskiy <yuli(dot)khodorkovskiy(at)crunchydata(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, Kohei KaiGai <kaigai(at)heterodb(dot)com>, pgsql-hackers(at)lists(dot)postgresql(dot)org, Joshua Brindle <joshua(dot)brindle(at)crunchydata(dot)com>, Mike P <mike(dot)palmiotto(at)crunchydata(dot)com> |
| Subject: | Re: add a MAC check for TRUNCATE |
| Date: | 2019-09-07 00:07:27 |
| Message-ID: | 23163.1567814847@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Joe Conway <mail(at)joeconway(dot)com> writes:
> On 9/6/19 2:18 PM, Tom Lane wrote:
>> sepgsql hasn't worked on RHEL6 in a long time, if ever; it requires
>> a newer version of libselinux than what ships in RHEL6. So I'm not
>> concerned about that. We do need to worry about RHEL7, and whatever
>> is the oldest version of Fedora that is running the sepgsql tests
>> in the buildfarm.
> I could be wrong, but as far as I know rhinoceros is the only buildfarm
> animal running sepgsql tests.
It seems reasonable to define RHEL7 as the oldest SELinux version we
still care about. But it'd be a good idea for somebody to be running
a fairly bleeding-edge Fedora animal with sepgsql enabled, so we get
coverage of the other end of the scale.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Joe Conway | 2019-09-07 01:09:36 | Re: add a MAC check for TRUNCATE |
| Previous Message | Peter Geoghegan | 2019-09-06 22:22:03 | Re: amcheck verification for GiST |