[CentOS] Selinux extra packages and compiled apps

Tue Sep 6 14:09:36 UTC 2011
Daniel J Walsh <dwalsh at redhat.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 09/02/2011 10:50 AM, John Doe wrote:
> Hey,
> 
> I am in the process of trying (and convincing my colleagues) to
> learn/setup
> 
> selinux as we switch to 6.0... Quick question: do I really "need"
> to install the setools/setroubleshoot
> 
> packages or can I live without them?  They want to install 80
> packages
> 
> (gnome stuff, gstreamer, gtk, tcl/tk...) and I would like to avoid
> installing
> 
> all sort of graphical tools/libs on my lean servers.
> 
> Can I just install setools-console by example?
> 
> Is there a console only equivalent for setroubleshoot?
> 
> If you know a must-have "selinux for dummies" like howto, apart
> from
> 
> Redhat/Fedora doc or CentOS wiki, I am interested!Especially if it
> covers the case of many non-standard applications (the policy here
> is to use compiled apaches/php/mencoder/ffmpeg/..., all installed
> (with their data/logs) in a "/OURDIR" directory (but still use
> /var/run for the pids and a few others depending on the app), 
> init.d scripts, logrotates, etc...
> 
> 
> Thx, JD
> 
> _______________________________________________ CentOS mailing
> list CentOS at centos.org 
> http://lists.centos.org/mailman/listinfo/centos

setools and setroubleshoot are not required to be run by SELinux.

setroubleshoot-server is supposed to be able to be used on server
machine and able to send email on errors that it sees.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk5mKZ8ACgkQrlYvE4MpobNaogCgy0vbvm21zZr/sR2w2206oKOP
dScAoMbCHjDHROJjOny1pfl+W7wsQnmk
=MoKe
-----END PGP SIGNATURE-----