[rmholt]

Would generation of SELinux policies be a good use case for LLMs?

"Generate a SELinux policy for daemon X. This daemon accesses it's config file in /etc and it's runtime data in /var/x. It listens on network. All other activities should be disabled"

[layer8]

Only if you’re knowledgeable enough to double-check the resulting configuration and correct any mistakes or omissions.

[kelnos]

While I agree the syntax of the policy is a big part of the difficulty, I think it's equally difficult for many apps/services to find out what activities it needs.