Changeset 2227
- Timestamp:
- 06/11/08 08:59:17
(4 months ago)
- Author:
- dsugar
- Message:
added MLS page
-
Files:
-
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
| r2222 |
r2227 |
|
| 32 | 32 | <topic label="Adding a Base Domain" href="setup/basedomain.html" /> |
|---|
| 33 | 33 | </topic> |
|---|
| | 34 | <topic label="Using MLS Features" href="overview/mls.html" /> |
|---|
| 34 | 35 | </topic> |
|---|
| 35 | 36 | |
|---|
| r2202 |
r2227 |
|
| 20 | 20 | A network resource, like a shared resources, is a passive entity used for communication and information sharing between domains. |
|---|
| 21 | 21 | But (as the name implies) it is used for data transfer over a network device. |
|---|
| 22 | | Graphically network resources are circles like regular resources except there are arrows through the bo |
|---|
| | 22 | Graphically network resources are circles like regular resources except there are arrows through the bounding circle to indicate it is a network resource. |
|---|
| 23 | 23 | </p> |
|---|
| 24 | 24 | |
|---|
| … | … | |
| 41 | 41 | <p> |
|---|
| 42 | 42 | IPTables (secmark) should be used when a server type system is being designed where many remote machines will be connecting over a network to the system being designed. |
|---|
| 43 | | In this case information about where the incoming packets are coming from is used to label the packets. |
|---|
| | 43 | In this case information about the source and target of packets is used to label the packets. |
|---|
| 44 | 44 | </p> |
|---|
| 45 | 45 | |
|---|
| r2205 |
r2227 |
|
| 20 | 20 | The MLS Settings allow the user to adjust the MLS levels that are available in the project. |
|---|
| 21 | 21 | Each policy item can have a set MLS level and access restrictions will be enforced by SELinux at runtime. |
|---|
| | 22 | All systems in the project use the same MLS definitions. |
|---|
| 22 | 23 | </p> |
|---|
| 23 | 24 | |
|---|
Download in other formats:
* Generating other formats may take time.
