Skip to content
Snippets Groups Projects
Commit 8b51674b authored by Stephen Smalley's avatar Stephen Smalley
Browse files

Restrict ability to set checkreqprot. 


Now that we set /sys/fs/selinux/checkreqprot via init.rc,
restrict the ability to set it to only the kernel domain.

Change-Id: I975061fd0e69c158db9bdb23e6ba77948e3fead1
Signed-off-by: default avatarStephen Smalley <sds@tycho.nsa.gov>
parent fa4002fc
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment