Dan is requesting a xen instance for use for this project.
Questions I have: There's no way to integrate this into our current environment? All information we get from the internet is random data :-)
Can you give us a better idea of how this works on the back end? What would we need as far as backups go, space, etc?
-Mike
Mike McGrath wrote:
Dan is requesting a xen instance for use for this project.
Questions I have: There's no way to integrate this into our current environment? All information we get from the internet is random data :-)
Can you give us a better idea of how this works on the back end? What would we need as far as backups go, space, etc?
No backups, Space would simply be the size of the Minimal OS (Only need httpd on a server platform.) plus a small amount (< 100 MB) for storing and processing log files.
http://milkbones.boston.devel.redhat.com/setroubleshoot
Is what I am looking to run.
df on milkbones shows
df Filesystem 1K-blocks Used Available Use% Mounted on /dev/mapper/VolGroup00-LogVol00 3777168 2271320 1310880 64% / /dev/xvda1 101086 18304 77563 20% /boot tmpfs 256000 0 256000 0% /dev/shm
Which is a heck of a lot more space then what I need.
-Mike
Subject: [Fedora Project Wiki] Update of "Infrastructure/RFR/SELinux" by DanielWalsh From: fedorawiki-noreply@fedoraproject.org Date: Fri, 02 Mar 2007 16:57:53 -0000 To: fedorawiki-noreply@fedoraproject.org
To: fedorawiki-noreply@fedoraproject.org
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Fedora Project Wiki" for change notification.
The following page has been changed by DanielWalsh: http://fedoraproject.org/wiki/Infrastructure/RFR/SELinux
New page: = Project Sponsor = Name: Daniel Walsh
Wiki Name: SELinux Troubleshoot
Fedora Account Name: Dan,Walsh
Group: Red Hat Engineering
Infrastructure Sponsor:
== Secondary Contact info ==
Name:
Wiki Name:
Fedora Account Name:
Group:
== Project Info == Project Name: SELinux Troubleshoot Tool
Target Audience: Fedora System Administrators
Expiration Date (required): No Experation.
Description/Summary:
Setup a Xen Instance running a web server to help Fedora Users diagnose SELinux AVC messages
Project plan (Detailed):
I would like to setup a Xen instance running an apache web server, that is totally locked down by SELinux. This web server would allow users to upload SELinux audit logs. The logs would be run through the SELinux Troubleshoot Database and suggested fixes would be displayed to the user. Since this machine would be taking random data from the internet, I do not believe this machine should be running any other services and will be locked down with the tightest possible SELinux policy.
Goals:
== Specific resources needed ==
FC6 or later xen instance.
== Additional Info (Optional) ==
infrastructure@lists.fedoraproject.org
-
Daniel J Walsh -
Mike McGrath