From mboxrd@z Thu Jan 1 00:00:00 1970 From: znavko@disroot.org Subject: how to understand this SELinux stuff? Date: Sat, 04 May 2019 16:42:52 +0000 Message-ID: <29974c7468844bd9eeed7dfa362b4bc4@disroot.org> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([209.51.188.92]:50235) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1hMxlg-0000t2-9w for help-guix@gnu.org; Sat, 04 May 2019 12:44:11 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1hMxld-0000yq-C3 for help-guix@gnu.org; Sat, 04 May 2019 12:44:08 -0400 Received: from knopi.disroot.org ([178.21.23.139]:44360) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1hMxlc-0000YK-L6 for help-guix@gnu.org; Sat, 04 May 2019 12:44:05 -0400 Received: from localhost (localhost [127.0.0.1]) by disroot.org (Postfix) with ESMTP id 3CB0C3077F for ; Sat, 4 May 2019 18:42:54 +0200 (CEST) Received: from knopi.disroot.org ([127.0.0.1]) by localhost (disroot.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3JpU7lTzrYEZ for ; Sat, 4 May 2019 18:42:52 +0200 (CEST) List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+gcggh-help-guix=m.gmane.org@gnu.org Sender: "Help-Guix" To: help-guix Hello! I am translating SELinux info messages. There are some hard formul= ations, but this is the best:=0A=0A#. type: enumerate=0A#: doc/guix.texi:= 1291=0Amsgid "We could generate a much more restrictive policy at install= ation time, so that only the @emph{exact} file name of the currently inst= alled @code{guix-daemon} executable would be labelled with @code{guix_dae= mon_exec_t}, instead of using a broad regular expression. The downside is= that root would have to install or upgrade the policy at installation ti= me whenever the Guix package that provides the effectively running @code{= guix-daemon} executable is upgraded."=0A=0AI cannot understand the latter= sentence. What is the 'guix package that provides the effectively runnin= g guix-damon'? Can I say just: if guix-daemon's executable was upgraded?