On Fri, Jun 15, 2007 at 04:49:25PM -0700, Greg KH wrote:SELinux does not relabel files when containing directories move, so it is not a problem they've chosen to face. How well does inotify handle running attached to every directory on a typical Linux system? Restorecon traverses the filesystem from a specific down. In order to apply to an entire system (as would be necessary to try to emulate AppArmor's model using SELinux), restorecon would need to run on vast portions of the filesystem often. (mv ~/public_html ~/archived; or tar zxvf linux-*.tar.gz, etc.) I'm not sure we need to run restorecon every time rename(2) is called. The time for restorecon is probably best imagined as a kind of 'du' that also updates extended attributes as it does its work. It'd be very difficult to improve on this. I beg to differ. :)
| Stoyan Gaydarov | From 2.4 to 2.6 to 2.7? |
| David Miller | [GIT]: Networking |
| Bernd Petrovitsch | Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3 |
| Stephen Rothwell | linux-next: Tree for July 18 |
git: | |
| Peter Karlsson | Git on Windows, CRLF issues |
| Jari Aalto | Re: On Tabs and Spaces |
| Stephan Beyer | git sequencer prototype |
| Linus Torvalds | "fatal: Untracked working tree file 'so-and-so' would be overwritten by merge" |
| GVG GVG | ssh_exchange_identification: Connection closed by remote host |
| Theo de Raadt | That whole "Linux stealing our code" thing |
| Jerome Santos | sshd.config and AllowUsers |
| Don Jackson | How to use (compact) flash cards with OpenBSD |
| Jim Winstead Jr. | Re: Root Disk/Book Disk Compatibility |
| Rick Emerson | Re: [comp.os.linux]: Re: File system issues! |
| Desmond A. Kirkpatrick | ATI GUP bug with Linux 'tickler' |
| Harald Zinnen | FTape QIC-80 Driver |
