--- [EMAIL PROTECTED] wrote: > I'm pretty sure that most of the security community agrees on what "correct" > means - the disagreement is in the most cost-effective way to *create* one.
Struth. (I'm practicing my Australian, it's gotten rusty) I say that the the only rational way to create a policy is to decide what you want the system to do and create your policy based on that. I think that calling something that does nothing more than enforce existing behavior without thought on what the behavior ought to be a "policy" does disservice to the entire security community. I realize that I'm in the minority on this one. Oh well. Casey Schaufler [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html