Hi,
I've been trying to see if there's any way at the moment to support nested subjects for learning. This is especially useful for the root policy and cron, to avoid granting policy-wide rights to the software run inside cron jobs. It seems like this feature isn't supported yet. Are there any plans to solve it? Or at least support a minimum depth of one or two levels for learning nested subjects? Do we have a workaround for this limitation not involving writing the policy from scratch, manually?
Support for learning nested subjects
2 posts
• Page 1 of 1
Support for learning nested subjects
by sumacsucks » Sat Dec 31, 2011 12:38 pm
- sumacsucks
- Posts: 5
- Joined: Sat Oct 24, 2009 5:21 am
Re: Support for learning nested subjects
by spender » Tue Jan 03, 2012 9:00 am
Do you need the full complexity of nested subjects? For instance, would it be possible for you to only allow cron to exec scripts in /etc/cron.*, and then set up inheritance rules for the /etc/cron.* scripts? The learning system can handle that kind of configuration.
-Brad
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
2 posts
• Page 1 of 1