Chapter 41. SVirt/SELinux clarification
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Low
|
Andreas Jaeger |
Bug Description
Clarify SELinux/sVirt context - is it different every time (ie, every time you run it, the context changes?), or is it separate?
Currently doc reads: "When using sVirt, SELinux is configured to run every QEMU process under a different security context."
Recommended change: "When using sVirt, SELinux is configured to run each QEMU process under a separate security context."
-------
Built: 2014-07-16T11:22:55 00:00
git SHA: f3f89b2859c9baa
URL: http://
source File: file:/home/
xml:id: hardening-
Changed in openstack-manuals: | |
status: | New → Confirmed |
importance: | Undecided → Low |
Changed in openstack-manuals: | |
assignee: | nobody → Andreas Jaeger (jaegerandi) |
Changed in openstack-manuals: | |
status: | Confirmed → In Progress |
Reviewed: https:/ /review. openstack. org/113142 /git.openstack. org/cgit/ openstack/ security- doc/commit/ ?id=733e5a8ca50 a12c55be046b84b 9e8db3bda2ad14
Committed: https:/
Submitter: Jenkins
Branch: master
commit 733e5a8ca50a12c 55be046b84b9e8d b3bda2ad14
Author: Andreas Jaeger <email address hidden>
Date: Sun Aug 10 20:09:22 2014 +0200
Improve "Hardening the virtualization layer"
Various edits as suggested in bug reports:
* Use variablelist to follow conventions for markup, improve paragraph
for clarity.
* Clarify a sentence about SELinux.
* Improve CFLAGS recommendation.
* Reword QEMU recommendation.
Change-Id: I28fdb67a9103e3 263944a3b22a44c fc16917473e
Closes-Bug: #1342862
Closes-Bug: #1342829
Closes-Bug: #1342826
Closes-Bug: #1342432