From: Ted <[EMAIL PROTECTED]> Date: Fri, 23 Jun 2006 13:48:01 -0500 > Realistically customers most likely to adopt use of SELinux are > going to be ones that currently use other trusted OSs such as TSOL > and HP-UX CMW.
Every single user who installs a modern distribution these days likely gets SELINUX enabled by default, and are therefore adopters of SELINUX. That's a lot of people. The number of people with existing CIPSO infrastructure are miniscule in comparison. Please do not even imply that CIPSO use is anything but fringe in the grand scheme of things. It most certainly is. And it will be replaced by IPSEC based labelling, that is a fact. If people cannot move over to IPSEC labelling simply because their HPUX/TSOL doesn't support it, I'm perfectly happy for those users to stick with HPUX and TSOL. A lot of people think Linux should try to be everything for everybody, I'm not one of those people :-) For CIPSO we eat a non-trivial maintainence and bloat cost in order to support legacy stuff for this relatively tiny group of potential users. I'd rather pay the bloat and development costs on something forward thinking like IPSEC labelling. Something people will actually be using years from now, rather than a dying technology that few people (relatively speaking) use as it is. Finally, even if CIPSO is something we want to put in, don't worry about it as there's still time to discuss things. A couple days before the merge window of 2.6.18 development closes is not the time to be submitting half-finished work and expecting it to be integrated. If 2.6.18 integration is what the submitter desires, they should have finished their work and started this review process weeks if not months ago. - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
