diff --git a/policycoreutils-rhat.patch b/policycoreutils-rhat.patch index d82bc96..b66599a 100644 --- a/policycoreutils-rhat.patch +++ b/policycoreutils-rhat.patch @@ -9965,7 +9965,7 @@ index aab1a4e..75117f4 100644 +sepolicy/sepolicy/templates/var_run.py +sepolicy/sepolicy/templates/var_spool.py diff --git a/policycoreutils/po/af.po b/policycoreutils/po/af.po -index a4478db..a61c8f3 100644 +index a4478db..961d921 100644 --- a/policycoreutils/po/af.po +++ b/policycoreutils/po/af.po @@ -8,7 +8,7 @@ msgid "" @@ -9973,7 +9973,7 @@ index a4478db..a61c8f3 100644 "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2012-05-25 07:28-0400\n" -+"POT-Creation-Date: 2012-10-16 12:24-0400\n" ++"POT-Creation-Date: 2013-01-04 12:01-0500\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" @@ -9986,7 +9986,7 @@ index a4478db..a61c8f3 100644 #, c-format msgid "failed to initialize PAM\n" msgstr "" -@@ -73,7 +73,7 @@ msgstr "" +@@ -73,353 +73,359 @@ msgstr "" msgid "authentication failed.\n" msgstr "" @@ -9995,7 +9995,14 @@ index a4478db..a61c8f3 100644 #, c-format msgid "Could not set exec context to %s.\n" msgstr "" -@@ -86,855 +86,870 @@ msgstr "" + +-#: ../audit2allow/audit2allow:230 ++#: ../audit2allow/audit2allow:232 + msgid "******************** IMPORTANT ***********************\n" + msgstr "" + +-#: ../audit2allow/audit2allow:231 ++#: ../audit2allow/audit2allow:233 msgid "To make this policy package active, execute:" msgstr "" @@ -10004,116 +10011,116 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../semanage/seobject.py:225 -+#: ../semanage/seobject.py:200 ++#: ../semanage/seobject.py:194 msgid "Could not create semanage handle" msgstr "" -#: ../semanage/seobject.py:233 -+#: ../semanage/seobject.py:208 ++#: ../semanage/seobject.py:202 msgid "SELinux policy is not managed or store cannot be accessed." msgstr "" -#: ../semanage/seobject.py:238 -+#: ../semanage/seobject.py:213 ++#: ../semanage/seobject.py:207 msgid "Cannot read policy store." msgstr "" -#: ../semanage/seobject.py:243 -+#: ../semanage/seobject.py:218 ++#: ../semanage/seobject.py:212 msgid "Could not establish semanage connection" msgstr "" -#: ../semanage/seobject.py:248 -+#: ../semanage/seobject.py:223 ++#: ../semanage/seobject.py:217 msgid "Could not test MLS enabled status" msgstr "" -#: ../semanage/seobject.py:254 ../semanage/seobject.py:269 -+#: ../semanage/seobject.py:229 ../semanage/seobject.py:244 ++#: ../semanage/seobject.py:223 ../semanage/seobject.py:238 msgid "Not yet implemented" msgstr "" -#: ../semanage/seobject.py:258 -+#: ../semanage/seobject.py:233 ++#: ../semanage/seobject.py:227 msgid "Semanage transaction already in progress" msgstr "" -#: ../semanage/seobject.py:267 -+#: ../semanage/seobject.py:242 ++#: ../semanage/seobject.py:236 msgid "Could not start semanage transaction" msgstr "" -#: ../semanage/seobject.py:278 -+#: ../semanage/seobject.py:254 ++#: ../semanage/seobject.py:248 msgid "Could not commit semanage transaction" msgstr "" -#: ../semanage/seobject.py:283 -+#: ../semanage/seobject.py:259 ++#: ../semanage/seobject.py:253 msgid "Semanage transaction not in progress" msgstr "" -#: ../semanage/seobject.py:295 ../semanage/seobject.py:375 -+#: ../semanage/seobject.py:271 ../semanage/seobject.py:351 ++#: ../semanage/seobject.py:265 ../semanage/seobject.py:345 msgid "Could not list SELinux modules" msgstr "" -#: ../semanage/seobject.py:308 -+#: ../semanage/seobject.py:284 ++#: ../semanage/seobject.py:278 msgid "Modules Name" msgstr "" -#: ../semanage/seobject.py:308 ../gui/modulesPage.py:62 -+#: ../semanage/seobject.py:284 ../gui/modulesPage.py:63 ++#: ../semanage/seobject.py:278 ../gui/modulesPage.py:63 msgid "Version" msgstr "" -#: ../semanage/seobject.py:311 ../gui/statusPage.py:75 -+#: ../semanage/seobject.py:287 ../gui/statusPage.py:75 ++#: ../semanage/seobject.py:281 ../gui/statusPage.py:75 msgid "Disabled" msgstr "" -#: ../semanage/seobject.py:326 -+#: ../semanage/seobject.py:302 ++#: ../semanage/seobject.py:296 #, python-format msgid "Could not disable module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:337 -+#: ../semanage/seobject.py:313 ++#: ../semanage/seobject.py:307 #, python-format msgid "Could not enable module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:352 -+#: ../semanage/seobject.py:328 ++#: ../semanage/seobject.py:322 #, python-format msgid "Could not remove module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:362 -+#: ../semanage/seobject.py:338 ++#: ../semanage/seobject.py:332 msgid "dontaudit requires either 'on' or 'off'" msgstr "" -#: ../semanage/seobject.py:391 -+#: ../semanage/seobject.py:366 ++#: ../semanage/seobject.py:360 msgid "Builtin Permissive Types" msgstr "" -#: ../semanage/seobject.py:401 -+#: ../semanage/seobject.py:376 ++#: ../semanage/seobject.py:370 msgid "Customized Permissive Types" msgstr "" -#: ../semanage/seobject.py:442 -+#: ../semanage/seobject.py:417 ++#: ../semanage/seobject.py:412 #, python-format msgid "Could not set permissive domain %s (module installation failed)" msgstr "" -#: ../semanage/seobject.py:448 -+#: ../semanage/seobject.py:423 ++#: ../semanage/seobject.py:418 #, python-format msgid "Could not remove permissive domain %s (remove failed)" msgstr "" @@ -10125,119 +10132,119 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1790 ../semanage/seobject.py:1853 -#: ../semanage/seobject.py:1872 ../semanage/seobject.py:1993 -#: ../semanage/seobject.py:2045 -+#: ../semanage/seobject.py:458 ../semanage/seobject.py:532 -+#: ../semanage/seobject.py:578 ../semanage/seobject.py:675 -+#: ../semanage/seobject.py:705 ../semanage/seobject.py:772 -+#: ../semanage/seobject.py:829 ../semanage/seobject.py:1084 -+#: ../semanage/seobject.py:1800 ../semanage/seobject.py:1863 -+#: ../semanage/seobject.py:1882 ../semanage/seobject.py:2003 -+#: ../semanage/seobject.py:2056 ++#: ../semanage/seobject.py:453 ../semanage/seobject.py:527 ++#: ../semanage/seobject.py:573 ../semanage/seobject.py:695 ++#: ../semanage/seobject.py:725 ../semanage/seobject.py:792 ++#: ../semanage/seobject.py:849 ../semanage/seobject.py:1104 ++#: ../semanage/seobject.py:1820 ../semanage/seobject.py:1883 ++#: ../semanage/seobject.py:1902 ../semanage/seobject.py:2025 ++#: ../semanage/seobject.py:2076 #, python-format msgid "Could not create a key for %s" msgstr "" -#: ../semanage/seobject.py:487 ../semanage/seobject.py:561 -#: ../semanage/seobject.py:607 ../semanage/seobject.py:613 -+#: ../semanage/seobject.py:462 ../semanage/seobject.py:536 -+#: ../semanage/seobject.py:582 ../semanage/seobject.py:588 ++#: ../semanage/seobject.py:457 ../semanage/seobject.py:531 ++#: ../semanage/seobject.py:577 ../semanage/seobject.py:583 #, python-format msgid "Could not check if login mapping for %s is defined" msgstr "" -#: ../semanage/seobject.py:496 -+#: ../semanage/seobject.py:471 ++#: ../semanage/seobject.py:466 #, python-format msgid "Linux Group %s does not exist" msgstr "" -#: ../semanage/seobject.py:501 -+#: ../semanage/seobject.py:476 ++#: ../semanage/seobject.py:471 #, python-format msgid "Linux User %s does not exist" msgstr "" -#: ../semanage/seobject.py:505 -+#: ../semanage/seobject.py:480 ++#: ../semanage/seobject.py:475 #, python-format msgid "Could not create login mapping for %s" msgstr "" -#: ../semanage/seobject.py:509 ../semanage/seobject.py:745 -+#: ../semanage/seobject.py:484 ../semanage/seobject.py:720 ++#: ../semanage/seobject.py:479 ../semanage/seobject.py:740 #, python-format msgid "Could not set name for %s" msgstr "" -#: ../semanage/seobject.py:514 ../semanage/seobject.py:755 -+#: ../semanage/seobject.py:489 ../semanage/seobject.py:730 ++#: ../semanage/seobject.py:484 ../semanage/seobject.py:750 #, python-format msgid "Could not set MLS range for %s" msgstr "" -#: ../semanage/seobject.py:518 -+#: ../semanage/seobject.py:493 ++#: ../semanage/seobject.py:488 #, python-format msgid "Could not set SELinux user for %s" msgstr "" -#: ../semanage/seobject.py:522 -+#: ../semanage/seobject.py:497 ++#: ../semanage/seobject.py:492 #, python-format msgid "Could not add login mapping for %s" msgstr "" -#: ../semanage/seobject.py:540 -+#: ../semanage/seobject.py:515 ++#: ../semanage/seobject.py:510 msgid "Requires seuser or serange" msgstr "" -#: ../semanage/seobject.py:563 ../semanage/seobject.py:609 -+#: ../semanage/seobject.py:538 ../semanage/seobject.py:584 ++#: ../semanage/seobject.py:533 ../semanage/seobject.py:579 #, python-format msgid "Login mapping for %s is not defined" msgstr "" -#: ../semanage/seobject.py:567 -+#: ../semanage/seobject.py:542 ++#: ../semanage/seobject.py:537 #, python-format msgid "Could not query seuser for %s" msgstr "" -#: ../semanage/seobject.py:581 -+#: ../semanage/seobject.py:556 ++#: ../semanage/seobject.py:551 #, python-format msgid "Could not modify login mapping for %s" msgstr "" -#: ../semanage/seobject.py:615 -+#: ../semanage/seobject.py:590 ++#: ../semanage/seobject.py:585 #, python-format msgid "Login mapping for %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:619 -+#: ../semanage/seobject.py:594 ++#: ../semanage/seobject.py:589 #, python-format msgid "Could not delete login mapping for %s" msgstr "" -#: ../semanage/seobject.py:641 ../semanage/seobject.py:659 -#: ../semanage/seobject.py:897 -+#: ../semanage/seobject.py:616 ../semanage/seobject.py:634 -+#: ../semanage/seobject.py:872 ++#: ../semanage/seobject.py:611 ../semanage/seobject.py:644 ++#: ../semanage/seobject.py:892 msgid "Could not list login mappings" msgstr "" -#: ../semanage/seobject.py:684 ../semanage/seobject.py:689 -+#: ../semanage/seobject.py:659 ../semanage/seobject.py:664 ++#: ../semanage/seobject.py:672 ../semanage/seobject.py:684 #: ../gui/system-config-selinux.glade:100 msgid "Login Name" msgstr "" -#: ../semanage/seobject.py:684 ../semanage/seobject.py:689 -#: ../semanage/seobject.py:947 ../semanage/seobject.py:952 -+#: ../semanage/seobject.py:659 ../semanage/seobject.py:664 -+#: ../semanage/seobject.py:922 ../semanage/seobject.py:927 ++#: ../semanage/seobject.py:672 ../semanage/seobject.py:684 ++#: ../semanage/seobject.py:942 ../semanage/seobject.py:947 #: ../gui/system-config-selinux.glade:128 #: ../gui/system-config-selinux.glade:915 #: ../gui/system-config-selinux.glade:2285 ../gui/usersPage.py:44 @@ -10245,7 +10252,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../semanage/seobject.py:684 ../gui/system-config-selinux.glade:156 -+#: ../semanage/seobject.py:659 ../gui/system-config-selinux.glade:156 ++#: ../semanage/seobject.py:672 ../gui/system-config-selinux.glade:156 #: ../gui/system-config-selinux.glade:943 msgid "MLS/MCS Range" msgstr "" @@ -10253,602 +10260,554 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:703 ../semanage/seobject.py:734 -#: ../semanage/seobject.py:801 ../semanage/seobject.py:858 -#: ../semanage/seobject.py:864 -+#: ../semanage/seobject.py:678 ../semanage/seobject.py:709 -+#: ../semanage/seobject.py:776 ../semanage/seobject.py:833 -+#: ../semanage/seobject.py:839 ++#: ../semanage/seobject.py:672 ++msgid "Service" ++msgstr "" ++ ++#: ../semanage/seobject.py:698 ../semanage/seobject.py:729 ++#: ../semanage/seobject.py:796 ../semanage/seobject.py:853 ++#: ../semanage/seobject.py:859 #, python-format msgid "Could not check if SELinux user %s is defined" msgstr "" -#: ../semanage/seobject.py:706 ../semanage/seobject.py:807 -#: ../semanage/seobject.py:870 -+#: ../semanage/seobject.py:681 ../semanage/seobject.py:782 -+#: ../semanage/seobject.py:845 ++#: ../semanage/seobject.py:701 ../semanage/seobject.py:802 ++#: ../semanage/seobject.py:865 #, python-format msgid "Could not query user for %s" msgstr "" -#: ../semanage/seobject.py:726 -+#: ../semanage/seobject.py:701 ++#: ../semanage/seobject.py:721 #, python-format msgid "You must add at least one role for %s" msgstr "" -#: ../semanage/seobject.py:741 -+#: ../semanage/seobject.py:716 ++#: ../semanage/seobject.py:736 #, python-format msgid "Could not create SELinux user for %s" msgstr "" -#: ../semanage/seobject.py:750 -+#: ../semanage/seobject.py:725 ++#: ../semanage/seobject.py:745 #, python-format msgid "Could not add role %s for %s" msgstr "" -#: ../semanage/seobject.py:759 -+#: ../semanage/seobject.py:734 ++#: ../semanage/seobject.py:754 #, python-format msgid "Could not set MLS level for %s" msgstr "" -#: ../semanage/seobject.py:762 -+#: ../semanage/seobject.py:737 ++#: ../semanage/seobject.py:757 #, python-format msgid "Could not add prefix %s for %s" msgstr "" -#: ../semanage/seobject.py:765 -+#: ../semanage/seobject.py:740 ++#: ../semanage/seobject.py:760 #, python-format msgid "Could not extract key for %s" msgstr "" -#: ../semanage/seobject.py:769 -+#: ../semanage/seobject.py:744 ++#: ../semanage/seobject.py:764 #, python-format msgid "Could not add SELinux user %s" msgstr "" -#: ../semanage/seobject.py:791 -+#: ../semanage/seobject.py:766 ++#: ../semanage/seobject.py:786 msgid "Requires prefix, roles, level or range" msgstr "" -#: ../semanage/seobject.py:793 -+#: ../semanage/seobject.py:768 ++#: ../semanage/seobject.py:788 msgid "Requires prefix or roles" msgstr "" -#: ../semanage/seobject.py:803 ../semanage/seobject.py:860 -+#: ../semanage/seobject.py:778 ../semanage/seobject.py:835 ++#: ../semanage/seobject.py:798 ../semanage/seobject.py:855 #, python-format msgid "SELinux user %s is not defined" msgstr "" -#: ../semanage/seobject.py:832 -+#: ../semanage/seobject.py:807 ++#: ../semanage/seobject.py:827 #, python-format msgid "Could not modify SELinux user %s" msgstr "" -#: ../semanage/seobject.py:866 -+#: ../semanage/seobject.py:841 ++#: ../semanage/seobject.py:861 #, python-format msgid "SELinux user %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:877 -+#: ../semanage/seobject.py:852 ++#: ../semanage/seobject.py:872 #, python-format msgid "Could not delete SELinux user %s" msgstr "" -#: ../semanage/seobject.py:915 -+#: ../semanage/seobject.py:890 ++#: ../semanage/seobject.py:910 msgid "Could not list SELinux users" msgstr "" -#: ../semanage/seobject.py:921 -+#: ../semanage/seobject.py:896 ++#: ../semanage/seobject.py:916 #, python-format msgid "Could not list roles for user %s" msgstr "" -#: ../semanage/seobject.py:946 -+#: ../semanage/seobject.py:921 ++#: ../semanage/seobject.py:941 msgid "Labeling" msgstr "" -#: ../semanage/seobject.py:946 -+#: ../semanage/seobject.py:921 ++#: ../semanage/seobject.py:941 msgid "MLS/" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "Prefix" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "MCS Level" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "MCS Range" msgstr "" -#: ../semanage/seobject.py:947 ../semanage/seobject.py:952 -+#: ../semanage/seobject.py:922 ../semanage/seobject.py:927 ++#: ../semanage/seobject.py:942 ../semanage/seobject.py:947 #: ../gui/system-config-selinux.glade:992 ../gui/usersPage.py:59 msgid "SELinux Roles" msgstr "" -#: ../semanage/seobject.py:967 -+#: ../semanage/seobject.py:944 ++#: ../semanage/seobject.py:964 msgid "Protocol udp or tcp is required" msgstr "" -#: ../semanage/seobject.py:969 -+#: ../semanage/seobject.py:946 ++#: ../semanage/seobject.py:966 msgid "Port is required" msgstr "" -#: ../semanage/seobject.py:979 -+#: ../semanage/seobject.py:956 ++#: ../semanage/seobject.py:976 msgid "Invalid Port" msgstr "" -#: ../semanage/seobject.py:983 -+#: ../semanage/seobject.py:960 ++#: ../semanage/seobject.py:980 #, python-format msgid "Could not create a key for %s/%s" msgstr "" -#: ../semanage/seobject.py:994 -+#: ../semanage/seobject.py:971 ++#: ../semanage/seobject.py:991 msgid "Type is required" msgstr "" -#: ../semanage/seobject.py:1000 ../semanage/seobject.py:1059 -#: ../semanage/seobject.py:1114 ../semanage/seobject.py:1120 -+#: ../semanage/seobject.py:974 ../semanage/seobject.py:1036 -+#: ../semanage/seobject.py:1794 ++#: ../semanage/seobject.py:994 ../semanage/seobject.py:1056 ++#: ../semanage/seobject.py:1814 +#, python-format +msgid "Type %s is invalid, must be a port type" +msgstr "" + -+#: ../semanage/seobject.py:980 ../semanage/seobject.py:1042 -+#: ../semanage/seobject.py:1097 ../semanage/seobject.py:1103 ++#: ../semanage/seobject.py:1000 ../semanage/seobject.py:1062 ++#: ../semanage/seobject.py:1117 ../semanage/seobject.py:1123 #, python-format msgid "Could not check if port %s/%s is defined" msgstr "" - --#: ../semanage/seobject.py:1002 -+#: ../semanage/seobject.py:982 - #, python-format - msgid "Port %s/%s already defined" - msgstr "" - --#: ../semanage/seobject.py:1006 -+#: ../semanage/seobject.py:986 - #, python-format - msgid "Could not create port for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1012 -+#: ../semanage/seobject.py:992 - #, python-format - msgid "Could not create context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1016 -+#: ../semanage/seobject.py:996 - #, python-format - msgid "Could not set user in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1020 -+#: ../semanage/seobject.py:1000 - #, python-format - msgid "Could not set role in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1024 -+#: ../semanage/seobject.py:1004 - #, python-format - msgid "Could not set type in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1029 -+#: ../semanage/seobject.py:1009 - #, python-format - msgid "Could not set mls fields in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1033 -+#: ../semanage/seobject.py:1013 - #, python-format - msgid "Could not set port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1037 -+#: ../semanage/seobject.py:1017 - #, python-format +@@ -469,8 +475,8 @@ msgstr "" msgid "Could not add port %s/%s" msgstr "" -#: ../semanage/seobject.py:1051 ../semanage/seobject.py:1316 -#: ../semanage/seobject.py:1512 -+#: ../semanage/seobject.py:1031 ../semanage/seobject.py:1304 -+#: ../semanage/seobject.py:1503 ++#: ../semanage/seobject.py:1051 ../semanage/seobject.py:1324 ++#: ../semanage/seobject.py:1523 msgid "Requires setype or serange" msgstr "" --#: ../semanage/seobject.py:1053 -+#: ../semanage/seobject.py:1033 +@@ -478,463 +484,472 @@ msgstr "" msgid "Requires setype" msgstr "" -#: ../semanage/seobject.py:1061 ../semanage/seobject.py:1116 -+#: ../semanage/seobject.py:1044 ../semanage/seobject.py:1099 ++#: ../semanage/seobject.py:1064 ../semanage/seobject.py:1119 #, python-format msgid "Port %s/%s is not defined" msgstr "" -#: ../semanage/seobject.py:1065 -+#: ../semanage/seobject.py:1048 ++#: ../semanage/seobject.py:1068 #, python-format msgid "Could not query port %s/%s" msgstr "" -#: ../semanage/seobject.py:1076 -+#: ../semanage/seobject.py:1059 ++#: ../semanage/seobject.py:1079 #, python-format msgid "Could not modify port %s/%s" msgstr "" -#: ../semanage/seobject.py:1089 -+#: ../semanage/seobject.py:1072 ++#: ../semanage/seobject.py:1092 msgid "Could not list the ports" msgstr "" -#: ../semanage/seobject.py:1105 -+#: ../semanage/seobject.py:1088 ++#: ../semanage/seobject.py:1108 #, python-format msgid "Could not delete the port %s" msgstr "" -#: ../semanage/seobject.py:1122 -+#: ../semanage/seobject.py:1105 ++#: ../semanage/seobject.py:1125 #, python-format msgid "Port %s/%s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1126 -+#: ../semanage/seobject.py:1109 ++#: ../semanage/seobject.py:1129 #, python-format msgid "Could not delete port %s/%s" msgstr "" -#: ../semanage/seobject.py:1142 ../semanage/seobject.py:1164 -+#: ../semanage/seobject.py:1125 ../semanage/seobject.py:1147 ++#: ../semanage/seobject.py:1145 ../semanage/seobject.py:1167 msgid "Could not list ports" msgstr "" -#: ../semanage/seobject.py:1203 -+#: ../semanage/seobject.py:1186 ++#: ../semanage/seobject.py:1206 msgid "SELinux Port Type" msgstr "" -#: ../semanage/seobject.py:1203 -+#: ../semanage/seobject.py:1186 ++#: ../semanage/seobject.py:1206 msgid "Proto" msgstr "" -#: ../semanage/seobject.py:1203 ../gui/system-config-selinux.glade:335 -+#: ../semanage/seobject.py:1186 ../gui/system-config-selinux.glade:335 ++#: ../semanage/seobject.py:1206 ../gui/system-config-selinux.glade:335 msgid "Port Number" msgstr "" -#: ../semanage/seobject.py:1222 -+#: ../semanage/seobject.py:1207 ++#: ../semanage/seobject.py:1227 msgid "Node Address is required" msgstr "" -#: ../semanage/seobject.py:1237 -+#: ../semanage/seobject.py:1222 ++#: ../semanage/seobject.py:1242 msgid "Unknown or missing protocol" msgstr "" -#: ../semanage/seobject.py:1251 ../semanage/seobject.py:1450 -#: ../semanage/seobject.py:1728 -msgid "SELinux Type is required" -+#: ../semanage/seobject.py:1236 ++#: ../semanage/seobject.py:1256 +msgid "SELinux node type is required" -+msgstr "" -+ -+#: ../semanage/seobject.py:1239 ../semanage/seobject.py:1307 -+#, python-format -+msgid "Type %s is invalid, must be a node type" msgstr "" -#: ../semanage/seobject.py:1255 ../semanage/seobject.py:1320 -#: ../semanage/seobject.py:1356 ../semanage/seobject.py:1454 -#: ../semanage/seobject.py:1516 ../semanage/seobject.py:1550 -#: ../semanage/seobject.py:1732 -+#: ../semanage/seobject.py:1243 ../semanage/seobject.py:1311 -+#: ../semanage/seobject.py:1347 ../semanage/seobject.py:1445 -+#: ../semanage/seobject.py:1507 ../semanage/seobject.py:1541 -+#: ../semanage/seobject.py:1739 ++#: ../semanage/seobject.py:1259 ../semanage/seobject.py:1327 ++#, python-format ++msgid "Type %s is invalid, must be a node type" ++msgstr "" ++ ++#: ../semanage/seobject.py:1263 ../semanage/seobject.py:1331 ++#: ../semanage/seobject.py:1367 ../semanage/seobject.py:1465 ++#: ../semanage/seobject.py:1527 ../semanage/seobject.py:1561 ++#: ../semanage/seobject.py:1759 #, python-format msgid "Could not create key for %s" msgstr "" -#: ../semanage/seobject.py:1257 ../semanage/seobject.py:1324 -#: ../semanage/seobject.py:1360 ../semanage/seobject.py:1366 -+#: ../semanage/seobject.py:1245 ../semanage/seobject.py:1315 -+#: ../semanage/seobject.py:1351 ../semanage/seobject.py:1357 ++#: ../semanage/seobject.py:1265 ../semanage/seobject.py:1335 ++#: ../semanage/seobject.py:1371 ../semanage/seobject.py:1377 #, python-format msgid "Could not check if addr %s is defined" msgstr "" -#: ../semanage/seobject.py:1266 -+#: ../semanage/seobject.py:1254 ++#: ../semanage/seobject.py:1274 #, python-format msgid "Could not create addr for %s" msgstr "" -#: ../semanage/seobject.py:1272 ../semanage/seobject.py:1470 -#: ../semanage/seobject.py:1690 -+#: ../semanage/seobject.py:1260 ../semanage/seobject.py:1461 -+#: ../semanage/seobject.py:1694 ++#: ../semanage/seobject.py:1280 ../semanage/seobject.py:1481 ++#: ../semanage/seobject.py:1714 #, python-format msgid "Could not create context for %s" msgstr "" -#: ../semanage/seobject.py:1276 -+#: ../semanage/seobject.py:1264 ++#: ../semanage/seobject.py:1284 #, python-format msgid "Could not set mask for %s" msgstr "" -#: ../semanage/seobject.py:1280 -+#: ../semanage/seobject.py:1268 ++#: ../semanage/seobject.py:1288 #, python-format msgid "Could not set user in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1284 -+#: ../semanage/seobject.py:1272 ++#: ../semanage/seobject.py:1292 #, python-format msgid "Could not set role in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1288 -+#: ../semanage/seobject.py:1276 ++#: ../semanage/seobject.py:1296 #, python-format msgid "Could not set type in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1293 -+#: ../semanage/seobject.py:1281 ++#: ../semanage/seobject.py:1301 #, python-format msgid "Could not set mls fields in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1297 -+#: ../semanage/seobject.py:1285 ++#: ../semanage/seobject.py:1305 #, python-format msgid "Could not set addr context for %s" msgstr "" -#: ../semanage/seobject.py:1301 -+#: ../semanage/seobject.py:1289 ++#: ../semanage/seobject.py:1309 #, python-format msgid "Could not add addr %s" msgstr "" -#: ../semanage/seobject.py:1326 ../semanage/seobject.py:1362 -+#: ../semanage/seobject.py:1317 ../semanage/seobject.py:1353 ++#: ../semanage/seobject.py:1337 ../semanage/seobject.py:1373 #, python-format msgid "Addr %s is not defined" msgstr "" -#: ../semanage/seobject.py:1330 -+#: ../semanage/seobject.py:1321 ++#: ../semanage/seobject.py:1341 #, python-format msgid "Could not query addr %s" msgstr "" -#: ../semanage/seobject.py:1340 -+#: ../semanage/seobject.py:1331 ++#: ../semanage/seobject.py:1351 #, python-format msgid "Could not modify addr %s" msgstr "" -#: ../semanage/seobject.py:1368 -+#: ../semanage/seobject.py:1359 ++#: ../semanage/seobject.py:1379 #, python-format msgid "Addr %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1372 -+#: ../semanage/seobject.py:1363 ++#: ../semanage/seobject.py:1383 #, python-format msgid "Could not delete addr %s" msgstr "" -#: ../semanage/seobject.py:1384 -+#: ../semanage/seobject.py:1375 ++#: ../semanage/seobject.py:1395 msgid "Could not deleteall node mappings" msgstr "" -#: ../semanage/seobject.py:1398 -+#: ../semanage/seobject.py:1389 ++#: ../semanage/seobject.py:1409 msgid "Could not list addrs" msgstr "" -#: ../semanage/seobject.py:1458 ../semanage/seobject.py:1520 -#: ../semanage/seobject.py:1554 ../semanage/seobject.py:1560 -+#: ../semanage/seobject.py:1441 ../semanage/seobject.py:1732 ++#: ../semanage/seobject.py:1461 ../semanage/seobject.py:1752 +msgid "SELinux Type is required" +msgstr "" + -+#: ../semanage/seobject.py:1449 ../semanage/seobject.py:1511 -+#: ../semanage/seobject.py:1545 ../semanage/seobject.py:1551 ++#: ../semanage/seobject.py:1469 ../semanage/seobject.py:1531 ++#: ../semanage/seobject.py:1565 ../semanage/seobject.py:1571 #, python-format msgid "Could not check if interface %s is defined" msgstr "" -#: ../semanage/seobject.py:1465 -+#: ../semanage/seobject.py:1456 ++#: ../semanage/seobject.py:1476 #, python-format msgid "Could not create interface for %s" msgstr "" -#: ../semanage/seobject.py:1474 -+#: ../semanage/seobject.py:1465 ++#: ../semanage/seobject.py:1485 #, python-format msgid "Could not set user in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1478 -+#: ../semanage/seobject.py:1469 ++#: ../semanage/seobject.py:1489 #, python-format msgid "Could not set role in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1482 -+#: ../semanage/seobject.py:1473 ++#: ../semanage/seobject.py:1493 #, python-format msgid "Could not set type in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1487 -+#: ../semanage/seobject.py:1478 ++#: ../semanage/seobject.py:1498 #, python-format msgid "Could not set mls fields in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1491 -+#: ../semanage/seobject.py:1482 ++#: ../semanage/seobject.py:1502 #, python-format msgid "Could not set interface context for %s" msgstr "" -#: ../semanage/seobject.py:1495 -+#: ../semanage/seobject.py:1486 ++#: ../semanage/seobject.py:1506 #, python-format msgid "Could not set message context for %s" msgstr "" -#: ../semanage/seobject.py:1499 -+#: ../semanage/seobject.py:1490 ++#: ../semanage/seobject.py:1510 #, python-format msgid "Could not add interface %s" msgstr "" -#: ../semanage/seobject.py:1522 ../semanage/seobject.py:1556 -+#: ../semanage/seobject.py:1513 ../semanage/seobject.py:1547 ++#: ../semanage/seobject.py:1533 ../semanage/seobject.py:1567 #, python-format msgid "Interface %s is not defined" msgstr "" -#: ../semanage/seobject.py:1526 -+#: ../semanage/seobject.py:1517 ++#: ../semanage/seobject.py:1537 #, python-format msgid "Could not query interface %s" msgstr "" -#: ../semanage/seobject.py:1537 -+#: ../semanage/seobject.py:1528 ++#: ../semanage/seobject.py:1548 #, python-format msgid "Could not modify interface %s" msgstr "" -#: ../semanage/seobject.py:1562 -+#: ../semanage/seobject.py:1553 ++#: ../semanage/seobject.py:1573 #, python-format msgid "Interface %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1566 -+#: ../semanage/seobject.py:1557 ++#: ../semanage/seobject.py:1577 #, python-format msgid "Could not delete interface %s" msgstr "" -#: ../semanage/seobject.py:1578 -+#: ../semanage/seobject.py:1569 ++#: ../semanage/seobject.py:1589 msgid "Could not delete all interface mappings" msgstr "" -#: ../semanage/seobject.py:1592 -+#: ../semanage/seobject.py:1583 ++#: ../semanage/seobject.py:1603 msgid "Could not list interfaces" msgstr "" -#: ../semanage/seobject.py:1617 -+#: ../semanage/seobject.py:1608 ++#: ../semanage/seobject.py:1628 msgid "SELinux Interface" msgstr "" -#: ../semanage/seobject.py:1617 ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1608 ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1628 ../semanage/seobject.py:1974 msgid "Context" msgstr "" -#: ../semanage/seobject.py:1667 -+#: ../semanage/seobject.py:1671 ++#: ../semanage/seobject.py:1691 #, python-format msgid "Equivalence class for %s already exists" msgstr "" -#: ../semanage/seobject.py:1673 -+#: ../semanage/seobject.py:1677 ++#: ../semanage/seobject.py:1697 #, python-format msgid "File spec %s conflicts with equivalency rule '%s %s'" msgstr "" -#: ../semanage/seobject.py:1682 -+#: ../semanage/seobject.py:1686 ++#: ../semanage/seobject.py:1706 #, python-format msgid "Equivalence class for %s does not exists" msgstr "" -#: ../semanage/seobject.py:1696 -+#: ../semanage/seobject.py:1700 ++#: ../semanage/seobject.py:1720 #, python-format msgid "Could not set user in file context for %s" msgstr "" -#: ../semanage/seobject.py:1700 -+#: ../semanage/seobject.py:1704 ++#: ../semanage/seobject.py:1724 #, python-format msgid "Could not set role in file context for %s" msgstr "" -#: ../semanage/seobject.py:1705 ../semanage/seobject.py:1762 -+#: ../semanage/seobject.py:1709 ../semanage/seobject.py:1769 ++#: ../semanage/seobject.py:1729 ../semanage/seobject.py:1789 #, python-format msgid "Could not set mls fields in file context for %s" msgstr "" -#: ../semanage/seobject.py:1711 -+#: ../semanage/seobject.py:1715 ++#: ../semanage/seobject.py:1735 msgid "Invalid file specification" msgstr "" -#: ../semanage/seobject.py:1713 -+#: ../semanage/seobject.py:1717 ++#: ../semanage/seobject.py:1737 msgid "File specification can not include spaces" msgstr "" -#: ../semanage/seobject.py:1718 -+#: ../semanage/seobject.py:1722 ++#: ../semanage/seobject.py:1742 #, python-format msgid "" "File spec %s conflicts with equivalency rule '%s %s'; Try adding '%s' instead" @@ -10857,119 +10816,119 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1736 ../semanage/seobject.py:1741 -#: ../semanage/seobject.py:1794 ../semanage/seobject.py:1876 -#: ../semanage/seobject.py:1880 -+#: ../semanage/seobject.py:1735 ++#: ../semanage/seobject.py:1755 +#, python-format +msgid "Type %s is invalid, must be a file or device type" +msgstr "" + -+#: ../semanage/seobject.py:1743 ../semanage/seobject.py:1748 -+#: ../semanage/seobject.py:1804 ../semanage/seobject.py:1886 -+#: ../semanage/seobject.py:1890 ++#: ../semanage/seobject.py:1763 ../semanage/seobject.py:1768 ++#: ../semanage/seobject.py:1824 ../semanage/seobject.py:1906 ++#: ../semanage/seobject.py:1910 #, python-format msgid "Could not check if file context for %s is defined" msgstr "" -#: ../semanage/seobject.py:1749 -+#: ../semanage/seobject.py:1756 ++#: ../semanage/seobject.py:1776 #, python-format msgid "Could not create file context for %s" msgstr "" -#: ../semanage/seobject.py:1757 -+#: ../semanage/seobject.py:1764 ++#: ../semanage/seobject.py:1784 #, python-format msgid "Could not set type in file context for %s" msgstr "" -#: ../semanage/seobject.py:1765 ../semanage/seobject.py:1822 -#: ../semanage/seobject.py:1826 -+#: ../semanage/seobject.py:1772 ../semanage/seobject.py:1832 -+#: ../semanage/seobject.py:1836 ++#: ../semanage/seobject.py:1792 ../semanage/seobject.py:1852 ++#: ../semanage/seobject.py:1856 #, python-format msgid "Could not set file context for %s" msgstr "" -#: ../semanage/seobject.py:1771 -+#: ../semanage/seobject.py:1778 ++#: ../semanage/seobject.py:1798 #, python-format msgid "Could not add file context for %s" msgstr "" -#: ../semanage/seobject.py:1785 -+#: ../semanage/seobject.py:1792 ++#: ../semanage/seobject.py:1812 msgid "Requires setype, serange or seuser" msgstr "" -#: ../semanage/seobject.py:1798 ../semanage/seobject.py:1884 -+#: ../semanage/seobject.py:1808 ../semanage/seobject.py:1894 ++#: ../semanage/seobject.py:1828 ../semanage/seobject.py:1914 #, python-format msgid "File context for %s is not defined" msgstr "" -#: ../semanage/seobject.py:1804 -+#: ../semanage/seobject.py:1814 ++#: ../semanage/seobject.py:1834 #, python-format msgid "Could not query file context for %s" msgstr "" -#: ../semanage/seobject.py:1830 -+#: ../semanage/seobject.py:1840 ++#: ../semanage/seobject.py:1860 #, python-format msgid "Could not modify file context for %s" msgstr "" -#: ../semanage/seobject.py:1843 -+#: ../semanage/seobject.py:1853 ++#: ../semanage/seobject.py:1873 msgid "Could not list the file contexts" msgstr "" -#: ../semanage/seobject.py:1857 -+#: ../semanage/seobject.py:1867 ++#: ../semanage/seobject.py:1887 #, python-format msgid "Could not delete the file context %s" msgstr "" -#: ../semanage/seobject.py:1882 -+#: ../semanage/seobject.py:1892 ++#: ../semanage/seobject.py:1912 #, python-format msgid "File context for %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1888 -+#: ../semanage/seobject.py:1898 ++#: ../semanage/seobject.py:1918 #, python-format msgid "Could not delete file context for %s" msgstr "" -#: ../semanage/seobject.py:1903 -+#: ../semanage/seobject.py:1913 ++#: ../semanage/seobject.py:1933 msgid "Could not list file contexts" msgstr "" -#: ../semanage/seobject.py:1907 -+#: ../semanage/seobject.py:1917 ++#: ../semanage/seobject.py:1937 msgid "Could not list local file contexts" msgstr "" -#: ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1974 msgid "SELinux fcontext" msgstr "" -#: ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1974 msgid "type" msgstr "" -#: ../semanage/seobject.py:1957 -+#: ../semanage/seobject.py:1967 ++#: ../semanage/seobject.py:1987 msgid "" "\n" "SELinux Distribution fcontext Equivalence \n" msgstr "" -#: ../semanage/seobject.py:1962 -+#: ../semanage/seobject.py:1972 ++#: ../semanage/seobject.py:1992 msgid "" "\n" "SELinux Local fcontext Equivalence \n" @@ -10977,99 +10936,98 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1996 ../semanage/seobject.py:2048 -#: ../semanage/seobject.py:2054 -+#: ../semanage/seobject.py:2006 ../semanage/seobject.py:2059 -+#: ../semanage/seobject.py:2065 ++#: ../semanage/seobject.py:2028 ../semanage/seobject.py:2079 ++#: ../semanage/seobject.py:2085 #, python-format msgid "Could not check if boolean %s is defined" msgstr "" -#: ../semanage/seobject.py:1998 ../semanage/seobject.py:2050 -+#: ../semanage/seobject.py:2008 ../semanage/seobject.py:2061 ++#: ../semanage/seobject.py:2030 ../semanage/seobject.py:2081 #, python-format msgid "Boolean %s is not defined" msgstr "" -#: ../semanage/seobject.py:2002 -+#: ../semanage/seobject.py:2012 ++#: ../semanage/seobject.py:2034 #, python-format msgid "Could not query file context %s" msgstr "" -#: ../semanage/seobject.py:2007 -+#: ../semanage/seobject.py:2017 ++#: ../semanage/seobject.py:2039 #, python-format msgid "You must specify one of the following values: %s" msgstr "" -#: ../semanage/seobject.py:2012 -+#: ../semanage/seobject.py:2022 ++#: ../semanage/seobject.py:2044 #, python-format msgid "Could not set active value of boolean %s" msgstr "" -#: ../semanage/seobject.py:2015 -+#: ../semanage/seobject.py:2025 ++#: ../semanage/seobject.py:2047 #, python-format msgid "Could not modify boolean %s" msgstr "" -#: ../semanage/seobject.py:2033 -+#: ../semanage/seobject.py:2043 ++#: ../semanage/seobject.py:2063 #, python-format msgid "Bad format %s: Record %s" msgstr "" -#: ../semanage/seobject.py:2056 -+#: ../semanage/seobject.py:2067 ++#: ../semanage/seobject.py:2087 #, python-format msgid "Boolean %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:2060 -+#: ../semanage/seobject.py:2071 ++#: ../semanage/seobject.py:2091 #, python-format msgid "Could not delete boolean %s" msgstr "" -#: ../semanage/seobject.py:2072 ../semanage/seobject.py:2089 -+#: ../semanage/seobject.py:2083 ../semanage/seobject.py:2100 ++#: ../semanage/seobject.py:2103 ../semanage/seobject.py:2120 msgid "Could not list booleans" msgstr "" -#: ../semanage/seobject.py:2112 -+#: ../semanage/seobject.py:2125 - msgid "unknown" - msgstr "" - +-msgid "unknown" +-msgstr "" +- -#: ../semanage/seobject.py:2125 -+#: ../semanage/seobject.py:2138 ++#: ../semanage/seobject.py:2155 msgid "off" msgstr "" -#: ../semanage/seobject.py:2125 -+#: ../semanage/seobject.py:2138 ++#: ../semanage/seobject.py:2155 msgid "on" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "SELinux boolean" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "State" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "Default" msgstr "" -#: ../semanage/seobject.py:2139 ../gui/polgen.glade:3355 -#: ../gui/polgengui.py:253 -+#: ../semanage/seobject.py:2152 ../gui/polgen.glade:113 -+#: ../gui/polgengui.py:254 ++#: ../semanage/seobject.py:2169 ../gui/polgen.glade:113 ++#: ../gui/polgengui.py:269 msgid "Description" msgstr "" @@ -11262,7 +11220,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgen.glade:239 ../gui/polgen.glade:259 -+#: ../gui/polgen.glade:316 ../sepolicy/sepolicy/generate.py:183 ++#: ../gui/polgen.glade:316 ../sepolicy/sepolicy/generate.py:171 +msgid "Standard Init Daemon" +msgstr "" + @@ -11274,7 +11232,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:241 ../gui/polgen.py:156 -msgid "Standard Init Daemon" -+#: ../gui/polgen.glade:332 ../sepolicy/sepolicy/generate.py:184 ++#: ../gui/polgen.glade:332 ../sepolicy/sepolicy/generate.py:172 +msgid "DBUS System Daemon" msgstr "" @@ -11291,7 +11249,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:282 -msgid "Internet Services Daemon (inetd)" -+#: ../gui/polgen.glade:366 ../sepolicy/sepolicy/generate.py:186 ++#: ../gui/polgen.glade:366 ../sepolicy/sepolicy/generate.py:174 +msgid "Web Application/Script (CGI)" msgstr "" @@ -11303,7 +11261,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:303 ../gui/polgen.py:159 -msgid "Web Application/Script (CGI)" -+#: ../gui/polgen.glade:383 ../sepolicy/sepolicy/generate.py:187 ++#: ../gui/polgen.glade:383 ../sepolicy/sepolicy/generate.py:176 +msgid "User Application" msgstr "" @@ -11319,7 +11277,7 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../gui/polgen.glade:345 ../gui/polgen.py:161 -+#: ../gui/polgen.glade:400 ../sepolicy/sepolicy/generate.py:188 ++#: ../gui/polgen.glade:400 ../sepolicy/sepolicy/generate.py:175 msgid "Sandbox" msgstr "" @@ -11339,7 +11297,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:455 -msgid "Existing User Roles" -+#: ../gui/polgen.glade:495 ../sepolicy/sepolicy/generate.py:189 ++#: ../gui/polgen.glade:495 +msgid "Minimal Terminal User Role" msgstr "" @@ -11352,7 +11310,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:476 ../gui/polgen.py:162 -msgid "Minimal Terminal User Role" -+#: ../gui/polgen.glade:512 ../sepolicy/sepolicy/generate.py:190 ++#: ../gui/polgen.glade:512 +msgid "Minimal X Windows User Role" msgstr "" @@ -11365,7 +11323,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:497 ../gui/polgen.py:163 -msgid "Minimal X Windows User Role" -+#: ../gui/polgen.glade:529 ../sepolicy/sepolicy/generate.py:191 ++#: ../gui/polgen.glade:529 +msgid "User Role" msgstr "" @@ -11378,7 +11336,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:518 ../gui/polgen.py:164 -msgid "User Role" -+#: ../gui/polgen.glade:546 ../sepolicy/sepolicy/generate.py:192 ++#: ../gui/polgen.glade:546 +msgid "Admin User Role" msgstr "" @@ -11397,7 +11355,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:585 -msgid "Root Users" -+#: ../gui/polgen.glade:623 ../sepolicy/sepolicy/generate.py:193 ++#: ../gui/polgen.glade:623 +msgid "Root Admin User Role" msgstr "" @@ -11423,7 +11381,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgen.glade:779 ../gui/polgengui.py:251 -+#: ../gui/polgen.glade:728 ../gui/polgengui.py:252 ++#: ../gui/polgen.glade:728 ../gui/polgengui.py:267 msgid "Name" msgstr "" @@ -11734,58 +11692,58 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../gui/polgengui.py:261 -+#: ../gui/polgengui.py:262 ++#: ../gui/polgengui.py:277 msgid "Role" msgstr "" -#: ../gui/polgengui.py:268 -+#: ../gui/polgengui.py:269 ++#: ../gui/polgengui.py:284 msgid "Existing_User" msgstr "" -#: ../gui/polgengui.py:282 ../gui/polgengui.py:290 ../gui/polgengui.py:304 -+#: ../gui/polgengui.py:283 ../gui/polgengui.py:291 ../gui/polgengui.py:305 ++#: ../gui/polgengui.py:298 ../gui/polgengui.py:306 ../gui/polgengui.py:320 msgid "Application" msgstr "" -#: ../gui/polgengui.py:352 -+#: ../gui/polgengui.py:353 ++#: ../gui/polgengui.py:363 #, python-format msgid "%s must be a directory" msgstr "" -#: ../gui/polgengui.py:412 ../gui/polgengui.py:693 -+#: ../gui/polgengui.py:413 ../gui/polgengui.py:694 ++#: ../gui/polgengui.py:423 ../gui/polgengui.py:704 msgid "You must select a user" msgstr "" -#: ../gui/polgengui.py:542 -+#: ../gui/polgengui.py:543 ++#: ../gui/polgengui.py:553 msgid "Select executable file to be confined." msgstr "" -#: ../gui/polgengui.py:553 -+#: ../gui/polgengui.py:554 ++#: ../gui/polgengui.py:564 msgid "Select init script file to be confined." msgstr "" -#: ../gui/polgengui.py:563 -+#: ../gui/polgengui.py:564 ++#: ../gui/polgengui.py:574 msgid "Select file(s) that confined application creates or writes" msgstr "" -#: ../gui/polgengui.py:570 -+#: ../gui/polgengui.py:571 ++#: ../gui/polgengui.py:581 msgid "Select directory(s) that the confined application owns and writes into" msgstr "" -#: ../gui/polgengui.py:632 -+#: ../gui/polgengui.py:633 ++#: ../gui/polgengui.py:643 msgid "Select directory to generate policy files in" msgstr "" -#: ../gui/polgengui.py:649 -+#: ../gui/polgengui.py:650 ++#: ../gui/polgengui.py:660 #, python-format msgid "" "Type %s_t already defined in current policy.\n" @@ -11793,12 +11751,12 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgengui.py:649 ../gui/polgengui.py:653 -+#: ../gui/polgengui.py:650 ../gui/polgengui.py:654 ++#: ../gui/polgengui.py:660 ../gui/polgengui.py:664 msgid "Verify Name" msgstr "" -#: ../gui/polgengui.py:653 -+#: ../gui/polgengui.py:654 ++#: ../gui/polgengui.py:664 #, python-format msgid "" "Module %s.pp already loaded in current policy.\n" @@ -11806,18 +11764,18 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgengui.py:699 -+#: ../gui/polgengui.py:700 ++#: ../gui/polgengui.py:710 msgid "" "You must add a name made up of letters and numbers and containing no spaces." msgstr "" -#: ../gui/polgengui.py:713 -+#: ../gui/polgengui.py:714 ++#: ../gui/polgengui.py:724 msgid "You must enter a executable" msgstr "" -#: ../gui/polgengui.py:738 ../gui/system-config-selinux.py:174 -+#: ../gui/polgengui.py:739 ../gui/system-config-selinux.py:174 ++#: ../gui/polgengui.py:749 ../gui/system-config-selinux.py:180 msgid "Configue SELinux" msgstr "" @@ -11905,7 +11863,7 @@ index a4478db..a61c8f3 100644 #: ../gui/portsPage.py:51 ../gui/system-config-selinux.glade:2528 msgid "Network Port" msgstr "" -@@ -1948,1411 +1854,1499 @@ msgstr "" +@@ -1948,1411 +1854,1620 @@ msgstr "" msgid "Group View" msgstr "" @@ -11974,8 +11932,11 @@ index a4478db..a61c8f3 100644 - -#: ../gui/selinux.tbl:3 -msgid "Allow all daemons the ability to use unallocated ttys" --msgstr "" -- ++#: ../gui/semanagePage.py:126 ++#, python-format ++msgid "Are you sure you want to delete %s '%s'?" + msgstr "" + -#: ../gui/selinux.tbl:4 ../gui/selinux.tbl:5 ../gui/selinux.tbl:11 -#: ../gui/selinux.tbl:12 ../gui/selinux.tbl:13 ../gui/selinux.tbl:15 -#: ../gui/selinux.tbl:20 ../gui/selinux.tbl:41 ../gui/selinux.tbl:208 @@ -11983,83 +11944,59 @@ index a4478db..a61c8f3 100644 -#: ../gui/selinux.tbl:213 ../gui/selinux.tbl:214 ../gui/selinux.tbl:215 -#: ../gui/selinux.tbl:216 ../gui/selinux.tbl:217 -msgid "User Privs" --msgstr "" -- --#: ../gui/selinux.tbl:4 --msgid "" --"Allow gadmin SELinux user account to execute files in home directory or /tmp" --msgstr "" -- --#: ../gui/selinux.tbl:5 --msgid "" --"Allow guest SELinux user account to execute files in home directory or /tmp" --msgstr "" -- --#: ../gui/selinux.tbl:6 ../gui/selinux.tbl:9 ../gui/selinux.tbl:16 --msgid "Memory Protection" --msgstr "" -- --#: ../gui/selinux.tbl:6 --msgid "Allow java executable stack" -+#: ../gui/semanagePage.py:126 -+#, python-format -+msgid "Are you sure you want to delete %s '%s'?" - msgstr "" - --#: ../gui/selinux.tbl:7 ../gui/selinux.tbl:8 ../gui/selinux.tbl:35 --#: ../gui/selinux.tbl:209 --msgid "Mount" +#: ../gui/semanagePage.py:126 +#, python-format +msgid "Delete %s" msgstr "" --#: ../gui/selinux.tbl:7 --msgid "Allow mount to mount any file" +-#: ../gui/selinux.tbl:4 +-msgid "" +-"Allow gadmin SELinux user account to execute files in home directory or /tmp" +#: ../gui/semanagePage.py:134 +#, python-format +msgid "Add %s" msgstr "" --#: ../gui/selinux.tbl:8 --msgid "Allow mount to mount any directory" +-#: ../gui/selinux.tbl:5 +-msgid "" +-"Allow guest SELinux user account to execute files in home directory or /tmp" +#: ../gui/semanagePage.py:148 +#, python-format +msgid "Modify %s" msgstr "" --#: ../gui/selinux.tbl:9 --msgid "Allow mplayer executable stack" +-#: ../gui/selinux.tbl:6 ../gui/selinux.tbl:9 ../gui/selinux.tbl:16 +-msgid "Memory Protection" +#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 +msgid "Permissive" msgstr "" --#: ../gui/selinux.tbl:10 ../gui/selinux.tbl:162 ../gui/selinux.tbl:187 --#: ../gui/selinux.tbl:188 --msgid "SSH" +-#: ../gui/selinux.tbl:6 +-msgid "Allow java executable stack" +#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 +msgid "Enforcing" msgstr "" --#: ../gui/selinux.tbl:10 --msgid "Allow ssh to run ssh-keysign" +-#: ../gui/selinux.tbl:7 ../gui/selinux.tbl:8 ../gui/selinux.tbl:35 +-#: ../gui/selinux.tbl:209 +-msgid "Mount" +#: ../gui/statusPage.py:94 +msgid "Status" msgstr "" --#: ../gui/selinux.tbl:11 +-#: ../gui/selinux.tbl:7 +-msgid "Allow mount to mount any file" +#: ../gui/statusPage.py:133 - msgid "" --"Allow staff SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Changing the policy type will cause a relabel of the entire file system on " +"the next boot. Relabeling takes a long time depending on the size of the " +"file system. Do you wish to continue?" msgstr "" --#: ../gui/selinux.tbl:12 +-#: ../gui/selinux.tbl:8 +-msgid "Allow mount to mount any directory" +#: ../gui/statusPage.py:147 - msgid "" --"Allow sysadm SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Changing to SELinux disabled requires a reboot. It is not recommended. If " +"you later decide to turn SELinux back on, the system will be required to " +"relabel. If you just want to see if SELinux is causing a problem on your " @@ -12068,72 +12005,70 @@ index a4478db..a61c8f3 100644 +"wish to continue?" msgstr "" --#: ../gui/selinux.tbl:13 +-#: ../gui/selinux.tbl:9 +-msgid "Allow mplayer executable stack" +#: ../gui/statusPage.py:152 - msgid "" --"Allow unconfined SELinux user account to execute files in home directory or /" --"tmp" --msgstr "" -- --#: ../gui/selinux.tbl:14 --msgid "Network Configuration" ++msgid "" +"Changing to SELinux enabled will cause a relabel of the entire file system " +"on the next boot. Relabeling takes a long time depending on the size of the " +"file system. Do you wish to continue?" msgstr "" --#: ../gui/selinux.tbl:14 --msgid "Allow unlabeled packets to flow on the network" +-#: ../gui/selinux.tbl:10 ../gui/selinux.tbl:162 ../gui/selinux.tbl:187 +-#: ../gui/selinux.tbl:188 +-msgid "SSH" +#: ../gui/system-config-selinux.glade:11 +msgid "system-config-selinux" msgstr "" --#: ../gui/selinux.tbl:15 +-#: ../gui/selinux.tbl:10 +-msgid "Allow ssh to run ssh-keysign" +#: ../gui/system-config-selinux.glade:12 - msgid "" --"Allow user SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Copyright (c)2006 Red Hat, Inc.\n" +"Copyright (c) 2006 Dan Walsh " msgstr "" --#: ../gui/selinux.tbl:16 --msgid "Allow unconfined to dyntrans to unconfined_execmem" +-#: ../gui/selinux.tbl:11 +-msgid "" +-"Allow staff SELinux user account to execute files in home directory or /tmp" +#: ../gui/system-config-selinux.glade:22 +#: ../gui/system-config-selinux.glade:544 +msgid "Add SELinux Login Mapping" msgstr "" --#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120 --#: ../gui/selinux.tbl:140 --msgid "Databases" +-#: ../gui/selinux.tbl:12 +-msgid "" +-"Allow sysadm SELinux user account to execute files in home directory or /tmp" +#: ../gui/system-config-selinux.glade:257 +msgid "Add SELinux Network Ports" msgstr "" --#: ../gui/selinux.tbl:17 --msgid "Allow user to connect to mysql socket" +-#: ../gui/selinux.tbl:13 +-msgid "" +-"Allow unconfined SELinux user account to execute files in home directory or /" +-"tmp" +#: ../gui/system-config-selinux.glade:391 +#: ../gui/system-config-selinux.glade:678 +msgid "SELinux Type" msgstr "" --#: ../gui/selinux.tbl:18 --msgid "Allow user to connect to postgres socket" +-#: ../gui/selinux.tbl:14 +-msgid "Network Configuration" +#: ../gui/system-config-selinux.glade:622 +msgid "File Specification" msgstr "" --#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223 --msgid "XServer" +-#: ../gui/selinux.tbl:14 +-msgid "Allow unlabeled packets to flow on the network" +#: ../gui/system-config-selinux.glade:650 +msgid "File Type" msgstr "" --#: ../gui/selinux.tbl:19 --msgid "Allow clients to write to X shared memory" --msgstr "" +-#: ../gui/selinux.tbl:15 +#: ../gui/system-config-selinux.glade:727 -+msgid "" + msgid "" +-"Allow user SELinux user account to execute files in home directory or /tmp" +"all files\n" +"regular file\n" +"directory\n" @@ -12142,32 +12077,47 @@ index a4478db..a61c8f3 100644 +"socket\n" +"symbolic link\n" +"named pipe\n" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:16 +-msgid "Allow unconfined to dyntrans to unconfined_execmem" +#: ../gui/system-config-selinux.glade:773 +msgid "MLS" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120 +-#: ../gui/selinux.tbl:140 +-msgid "Databases" +#: ../gui/system-config-selinux.glade:837 +msgid "Add SELinux User" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:17 +-msgid "Allow user to connect to mysql socket" +#: ../gui/system-config-selinux.glade:1079 +msgid "SELinux Administration" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:18 +-msgid "Allow user to connect to postgres socket" +#: ../gui/system-config-selinux.glade:1122 +msgid "Add" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223 +-msgid "XServer" +-msgstr "" +#: ../gui/system-config-selinux.glade:1144 +msgid "_Properties" +msgstr "" -+ + +-#: ../gui/selinux.tbl:19 +-msgid "Allow clients to write to X shared memory" +#: ../gui/system-config-selinux.glade:1166 +msgid "_Delete" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:20 +#: ../gui/system-config-selinux.glade:1256 +msgid "Select Management Object" +msgstr "" @@ -12181,79 +12131,24 @@ index a4478db..a61c8f3 100644 +msgstr "" + +#: ../gui/system-config-selinux.glade:1354 -+msgid "" + msgid "" +-"Allow xguest SELinux user account to execute files in home directory or /tmp" +"Disabled\n" +"Permissive\n" +"Enforcing\n" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1373 -+msgid "Current Enforcing Mode" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1418 -+msgid "System Default Policy Type: " -+msgstr "" - --#: ../gui/selinux.tbl:20 -+#: ../gui/system-config-selinux.glade:1463 - msgid "" --"Allow xguest SELinux user account to execute files in home directory or /tmp" -+"Select if you wish to relabel then entire file system on next reboot. " -+"Relabeling can take a very long time, depending on the size of the system. " -+"If you are changing policy types or going from disabled to enforcing, a " -+"relabel is required." msgstr "" -#: ../gui/selinux.tbl:21 ../gui/selinux.tbl:228 ../gui/selinux.tbl:229 -#: ../gui/selinux.tbl:231 -msgid "NIS" -+#: ../gui/system-config-selinux.glade:1509 -+msgid "Relabel on next reboot." -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1561 -+msgid "label37" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1598 -+msgid "Revert boolean setting to system default" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1614 -+msgid "Toggle between Customized and All Booleans" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1645 -+#: ../gui/system-config-selinux.glade:1850 -+#: ../gui/system-config-selinux.glade:2037 -+#: ../gui/system-config-selinux.glade:2224 -+#: ../gui/system-config-selinux.glade:2467 -+#: ../gui/system-config-selinux.glade:2692 -+#: ../gui/system-config-selinux.glade:2867 -+msgid "Filter" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1734 -+msgid "label50" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1771 -+msgid "Add File Context" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1787 -+msgid "Modify File Context" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1803 -+msgid "Delete File Context" ++#: ../gui/system-config-selinux.glade:1373 ++msgid "Current Enforcing Mode" msgstr "" -#: ../gui/selinux.tbl:21 -msgid "Allow daemons to run with NIS" -+#: ../gui/system-config-selinux.glade:1819 -+msgid "Toggle between all and customized file context" ++#: ../gui/system-config-selinux.glade:1418 ++msgid "System Default Policy Type: " msgstr "" -#: ../gui/selinux.tbl:22 ../gui/selinux.tbl:23 ../gui/selinux.tbl:24 @@ -12262,1505 +12157,1613 @@ index a4478db..a61c8f3 100644 -#: ../gui/selinux.tbl:73 ../gui/selinux.tbl:74 ../gui/selinux.tbl:115 -#: ../gui/selinux.tbl:118 -msgid "Web Applications" -+#: ../gui/system-config-selinux.glade:1939 -+msgid "label38" ++#: ../gui/system-config-selinux.glade:1463 ++msgid "" ++"Select if you wish to relabel then entire file system on next reboot. " ++"Relabeling can take a very long time, depending on the size of the system. " ++"If you are changing policy types or going from disabled to enforcing, a " ++"relabel is required." msgstr "" -#: ../gui/selinux.tbl:22 -msgid "Transition staff SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:1976 -+msgid "Add SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1509 ++msgid "Relabel on next reboot." msgstr "" -#: ../gui/selinux.tbl:23 -msgid "Transition sysadm SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:1992 -+msgid "Modify SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1561 ++msgid "label37" msgstr "" -#: ../gui/selinux.tbl:24 -msgid "Transition user SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:2008 -+msgid "Delete SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1598 ++msgid "Revert boolean setting to system default" msgstr "" -#: ../gui/selinux.tbl:25 -msgid "Transition xguest SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:2126 -+msgid "label39" ++#: ../gui/system-config-selinux.glade:1614 ++msgid "Toggle between Customized and All Booleans" msgstr "" -#: ../gui/selinux.tbl:26 ../gui/selinux.tbl:27 ../gui/selinux.tbl:28 -#: ../gui/selinux.tbl:29 -msgid "Allow staff Web Browsers to write to home directories" -+#: ../gui/system-config-selinux.glade:2163 -+msgid "Add User" ++#: ../gui/system-config-selinux.glade:1645 ++#: ../gui/system-config-selinux.glade:1850 ++#: ../gui/system-config-selinux.glade:2037 ++#: ../gui/system-config-selinux.glade:2224 ++#: ../gui/system-config-selinux.glade:2467 ++#: ../gui/system-config-selinux.glade:2692 ++#: ../gui/system-config-selinux.glade:2867 ++msgid "Filter" msgstr "" -#: ../gui/selinux.tbl:30 -msgid "Disable SELinux protection for amanda" -+#: ../gui/system-config-selinux.glade:2179 -+msgid "Modify User" ++#: ../gui/system-config-selinux.glade:1734 ++msgid "label50" msgstr "" -#: ../gui/selinux.tbl:31 -msgid "Disable SELinux protection for amavis" -+#: ../gui/system-config-selinux.glade:2195 -+msgid "Delete User" ++#: ../gui/system-config-selinux.glade:1771 ++msgid "Add File Context" msgstr "" -#: ../gui/selinux.tbl:32 -msgid "Disable SELinux protection for apmd daemon" -+#: ../gui/system-config-selinux.glade:2313 -+msgid "label41" ++#: ../gui/system-config-selinux.glade:1787 ++msgid "Modify File Context" msgstr "" -#: ../gui/selinux.tbl:33 -msgid "Disable SELinux protection for arpwatch daemon" -+#: ../gui/system-config-selinux.glade:2350 -+msgid "Add Network Port" ++#: ../gui/system-config-selinux.glade:1803 ++msgid "Delete File Context" msgstr "" -#: ../gui/selinux.tbl:34 -msgid "Disable SELinux protection for auditd daemon" -+#: ../gui/system-config-selinux.glade:2366 -+msgid "Edit Network Port" ++#: ../gui/system-config-selinux.glade:1819 ++msgid "Toggle between all and customized file context" msgstr "" -#: ../gui/selinux.tbl:35 -msgid "Disable SELinux protection for automount daemon" -+#: ../gui/system-config-selinux.glade:2382 -+msgid "Delete Network Port" ++#: ../gui/system-config-selinux.glade:1939 ++msgid "label38" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:1976 ++msgid "Add SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:1992 ++msgid "Modify SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2008 ++msgid "Delete SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2126 ++msgid "label39" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2163 ++msgid "Add User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2179 ++msgid "Modify User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2195 ++msgid "Delete User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2313 ++msgid "label41" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2350 ++msgid "Add Network Port" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2366 ++msgid "Edit Network Port" msgstr "" -#: ../gui/selinux.tbl:36 -msgid "Disable SELinux protection for avahi" ++#: ../gui/system-config-selinux.glade:2382 ++msgid "Delete Network Port" + msgstr "" + +-#: ../gui/selinux.tbl:37 +-msgid "Disable SELinux protection for bluetooth daemon" +#: ../gui/system-config-selinux.glade:2418 +#: ../gui/system-config-selinux.glade:2436 +msgid "Toggle between Customized and All Ports" msgstr "" --#: ../gui/selinux.tbl:37 --msgid "Disable SELinux protection for bluetooth daemon" +-#: ../gui/selinux.tbl:38 +-msgid "Disable SELinux protection for canna daemon" +#: ../gui/system-config-selinux.glade:2556 +msgid "label42" msgstr "" --#: ../gui/selinux.tbl:38 --msgid "Disable SELinux protection for canna daemon" +-#: ../gui/selinux.tbl:39 +-msgid "Disable SELinux protection for cardmgr daemon" +#: ../gui/system-config-selinux.glade:2593 +msgid "Generate new policy module" msgstr "" --#: ../gui/selinux.tbl:39 --msgid "Disable SELinux protection for cardmgr daemon" +-#: ../gui/selinux.tbl:40 +-msgid "Disable SELinux protection for Cluster Server" +#: ../gui/system-config-selinux.glade:2609 +msgid "Load policy module" msgstr "" --#: ../gui/selinux.tbl:40 --msgid "Disable SELinux protection for Cluster Server" +-#: ../gui/selinux.tbl:41 +#: ../gui/system-config-selinux.glade:2625 +msgid "Remove loadable policy module" - msgstr "" - --#: ../gui/selinux.tbl:41 ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2661 msgid "" -"Allow cdrecord to read various content. nfs, samba, removable devices, user " -"temp and untrusted content files" +"Enable/Disable additional audit rules, that are normally not reported in the " +"log files." - msgstr "" - --#: ../gui/selinux.tbl:42 --msgid "Disable SELinux protection for ciped daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2781 +msgid "label44" - msgstr "" - --#: ../gui/selinux.tbl:43 --msgid "Disable SELinux protection for clamd daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2818 +msgid "Change process mode to permissive." msgstr "" --#: ../gui/selinux.tbl:44 --msgid "Disable SELinux protection for clamscan" +-#: ../gui/selinux.tbl:42 +-msgid "Disable SELinux protection for ciped daemon" +#: ../gui/system-config-selinux.glade:2836 +msgid "Change process mode to enforcing" - msgstr "" - --#: ../gui/selinux.tbl:45 --msgid "Disable SELinux protection for clvmd" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2928 +msgid "Process Domain" - msgstr "" - --#: ../gui/selinux.tbl:46 --msgid "Disable SELinux protection for comsat daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2956 +msgid "label59" - msgstr "" - --#: ../gui/selinux.tbl:47 ../gui/selinux.tbl:48 ../gui/selinux.tbl:49 --#: ../gui/selinux.tbl:50 ../gui/selinux.tbl:51 --msgid "Disable SELinux protection for courier daemon" ++msgstr "" ++ +#: ../gui/usersPage.py:138 +#, python-format +msgid "SELinux user '%s' is required" msgstr "" +-#: ../gui/selinux.tbl:43 +-msgid "Disable SELinux protection for clamd daemon" ++#: ../sepolicy/sepolicy.py:202 ++msgid "Generate SELinux man pages" + msgstr "" + +-#: ../gui/selinux.tbl:44 +-msgid "Disable SELinux protection for clamscan" ++#: ../sepolicy/sepolicy.py:205 ++msgid "path in which the generated SELinux man pages will be stored" + msgstr "" + +-#: ../gui/selinux.tbl:45 +-msgid "Disable SELinux protection for clvmd" ++#: ../sepolicy/sepolicy.py:207 ++msgid "name of the OS for man pages" + msgstr "" + +-#: ../gui/selinux.tbl:46 +-msgid "Disable SELinux protection for comsat daemon" ++#: ../sepolicy/sepolicy.py:209 ++msgid "Generate HTML man pages structure for selected SELinux man page" + msgstr "" + +-#: ../gui/selinux.tbl:47 ../gui/selinux.tbl:48 ../gui/selinux.tbl:49 +-#: ../gui/selinux.tbl:50 ../gui/selinux.tbl:51 +-msgid "Disable SELinux protection for courier daemon" ++#: ../sepolicy/sepolicy.py:213 ++msgid "All domains" + msgstr "" + -#: ../gui/selinux.tbl:52 -msgid "Disable SELinux protection for cpucontrol daemon" -+#: ../sepolicy/sepolicy.py:106 -+msgid "Generate SELinux man pages" ++#: ../sepolicy/sepolicy.py:216 ++msgid "Domain name(s) of man pages to be created" msgstr "" -#: ../gui/selinux.tbl:53 -msgid "Disable SELinux protection for cpuspeed daemon" -+#: ../sepolicy/sepolicy.py:110 -+msgid "path in which the generated SELinux man pages will be stored" ++#: ../sepolicy/sepolicy.py:221 ++msgid "Query SELinux policy network information" msgstr "" -#: ../gui/selinux.tbl:54 -msgid "Cron" -+#: ../sepolicy/sepolicy.py:114 -+msgid "All domains" ++#: ../sepolicy/sepolicy.py:226 ++msgid "list all SELinux port types" msgstr "" -#: ../gui/selinux.tbl:54 -msgid "Disable SELinux protection for crond daemon" -+#: ../sepolicy/sepolicy.py:116 -+msgid "Domain name(s) of man pages to be created" ++#: ../sepolicy/sepolicy.py:229 ++msgid "show SELinux type related to the port" msgstr "" -#: ../gui/selinux.tbl:55 ../gui/selinux.tbl:56 ../gui/selinux.tbl:57 -#: ../gui/selinux.tbl:91 -msgid "Printing" -+#: ../sepolicy/sepolicy.py:164 -+msgid "Query SELinux policy network information" ++#: ../sepolicy/sepolicy.py:232 ++msgid "Show ports defined for this SELinux type" msgstr "" -#: ../gui/selinux.tbl:55 -msgid "Disable SELinux protection for cupsd back end server" -+#: ../sepolicy/sepolicy.py:169 -+msgid "list all SELinux port types" ++#: ../sepolicy/sepolicy.py:235 ++msgid "show ports to which this domain can bind and/or connect" msgstr "" -#: ../gui/selinux.tbl:56 -msgid "Disable SELinux protection for cupsd daemon" -+#: ../sepolicy/sepolicy.py:172 -+msgid "show SELinux type related to the port" ++#: ../sepolicy/sepolicy.py:250 ++msgid "query SELinux policy to see if domains can communicate with each other" msgstr "" -#: ../gui/selinux.tbl:57 -msgid "Disable SELinux protection for cupsd_lpd" -+#: ../sepolicy/sepolicy.py:175 -+msgid "Show ports defined for this SELinux type" ++#: ../sepolicy/sepolicy.py:253 ++msgid "Source Domain" msgstr "" -#: ../gui/selinux.tbl:58 -msgid "CVS" -+#: ../sepolicy/sepolicy.py:178 -+msgid "show ports to which this domain can bind and/or connect" ++#: ../sepolicy/sepolicy.py:256 ++msgid "Target Domain" msgstr "" -#: ../gui/selinux.tbl:58 -msgid "Disable SELinux protection for cvs daemon" -+#: ../sepolicy/sepolicy.py:192 -+msgid "query SELinux policy to see if domains can communicate with each other" ++#: ../sepolicy/sepolicy.py:276 ++msgid "query SELinux Policy to see description of booleans" msgstr "" -#: ../gui/selinux.tbl:59 -msgid "Disable SELinux protection for cyrus daemon" -+#: ../sepolicy/sepolicy.py:195 -+msgid "Source Domain" ++#: ../sepolicy/sepolicy.py:280 ++msgid "get all booleans descriptions" msgstr "" -#: ../gui/selinux.tbl:60 -msgid "Disable SELinux protection for dbskkd daemon" -+#: ../sepolicy/sepolicy.py:198 -+msgid "Target Domain" ++#: ../sepolicy/sepolicy.py:282 ++msgid "boolean to get description" msgstr "" -#: ../gui/selinux.tbl:61 -msgid "Disable SELinux protection for dbusd daemon" -+#: ../sepolicy/sepolicy.py:215 -+msgid "query SELinux Policy to see description of booleans" - msgstr "" - --#: ../gui/selinux.tbl:62 --msgid "Disable SELinux protection for dccd" -+#: ../sepolicy/sepolicy.py:219 -+msgid "get all booleans desctiption" - msgstr "" - --#: ../gui/selinux.tbl:63 --msgid "Disable SELinux protection for dccifd" -+#: ../sepolicy/sepolicy.py:221 -+msgid "boolean to get description" - msgstr "" - --#: ../gui/selinux.tbl:64 --msgid "Disable SELinux protection for dccm" -+#: ../sepolicy/sepolicy.py:231 ++#: ../sepolicy/sepolicy.py:301 +msgid "" +"query SELinux Policy to see how a source process domain can transition to " +"the target process domain" msgstr "" +-#: ../gui/selinux.tbl:62 +-msgid "Disable SELinux protection for dccd" ++#: ../sepolicy/sepolicy.py:304 ++msgid "source process domain" + msgstr "" + +-#: ../gui/selinux.tbl:63 +-msgid "Disable SELinux protection for dccifd" ++#: ../sepolicy/sepolicy.py:307 ++msgid "target process domain" + msgstr "" + +-#: ../gui/selinux.tbl:64 +-msgid "Disable SELinux protection for dccm" ++#: ../sepolicy/sepolicy.py:327 ++msgid "Command required for this type of policy" + msgstr "" + -#: ../gui/selinux.tbl:65 -msgid "Disable SELinux protection for ddt daemon" -+#: ../sepolicy/sepolicy.py:234 -+msgid "source process domain" ++#: ../sepolicy/sepolicy.py:347 ++msgid "List SELinux Policy interfaces" msgstr "" -#: ../gui/selinux.tbl:66 -msgid "Disable SELinux protection for devfsd daemon" -+#: ../sepolicy/sepolicy.py:237 -+msgid "target process domain" ++#: ../sepolicy/sepolicy.py:362 ++msgid "Generate SELinux Policy module template" msgstr "" -#: ../gui/selinux.tbl:67 -msgid "Disable SELinux protection for dhcpc daemon" -+#: ../sepolicy/sepolicy.py:259 -+msgid "Generate SELinux Policy module template" ++#: ../sepolicy/sepolicy.py:365 ++msgid "Enter domain type which you will be extending" msgstr "" -#: ../gui/selinux.tbl:68 -msgid "Disable SELinux protection for dhcpd daemon" -+#: ../sepolicy/sepolicy.py:265 -+msgid "name of policy to generate" ++#: ../sepolicy/sepolicy.py:368 ++msgid "Enter SELinux user(s) which will transition to this domain" msgstr "" -#: ../gui/selinux.tbl:69 -msgid "Disable SELinux protection for dictd daemon" -+#: ../sepolicy/sepolicy.py:267 -+msgid "executable to confine" ++#: ../sepolicy/sepolicy.py:371 ++msgid "Enter domain(s) that this confined admin will administrate" msgstr "" -#: ../gui/selinux.tbl:70 -msgid "Allow sysadm_t to directly start daemons" -+#: ../sepolicy/sepolicy.py:269 -+msgid "run policy generation test suite" ++#: ../sepolicy/sepolicy.py:374 ++msgid "name of policy to generate" msgstr "" -#: ../gui/selinux.tbl:71 -msgid "Disable SELinux protection for Evolution" -+#: ../sepolicy/sepolicy.py:274 -+msgid "commands" ++#: ../sepolicy/sepolicy.py:378 ++msgid "path in which the generated policy files will be stored" msgstr "" -#: ../gui/selinux.tbl:72 -msgid "Games" -+#: ../sepolicy/sepolicy/generate.py:185 -+msgid "Internet Services Daemon" ++#: ../sepolicy/sepolicy.py:380 ++msgid "executable to confine" msgstr "" -#: ../gui/selinux.tbl:72 -msgid "Disable SELinux protection for games" -+#: ../sepolicy/sepolicy/generate.py:198 -+msgid "Valid Types:\n" ++#: ../sepolicy/sepolicy.py:384 ../sepolicy/sepolicy.py:387 ++#: ../sepolicy/sepolicy.py:390 ../sepolicy/sepolicy.py:393 ++#: ../sepolicy/sepolicy.py:396 ../sepolicy/sepolicy.py:399 ++#: ../sepolicy/sepolicy.py:402 ../sepolicy/sepolicy.py:405 ++#: ../sepolicy/sepolicy.py:408 ../sepolicy/sepolicy.py:411 ++#: ../sepolicy/sepolicy.py:414 ../sepolicy/sepolicy.py:417 ++#, python-format ++msgid "Generate Policy for %s" msgstr "" -#: ../gui/selinux.tbl:73 -msgid "Disable SELinux protection for the web browsers" -+#: ../sepolicy/sepolicy/generate.py:232 -+#, python-format -+msgid "Ports must be numbers or ranges of numbers from 1 to %d " ++#: ../sepolicy/sepolicy.py:422 ++msgid "commands" msgstr "" -#: ../gui/selinux.tbl:74 -msgid "Disable SELinux protection for Thunderbird" -+#: ../sepolicy/sepolicy/generate.py:359 -+msgid "You must enter a name for your confined process/user" ++#: ../sepolicy/sepolicy.py:425 ++msgid "Alternate SELinux policy, defaults to /sys/fs/selinux/policy" msgstr "" -#: ../gui/selinux.tbl:75 -msgid "Disable SELinux protection for distccd daemon" -+#: ../sepolicy/sepolicy/generate.py:361 -+msgid "" -+"Name must be alpha numberic with no spaces. Consider using option \"-n " -+"MODULENAME\"" ++#: ../sepolicy/sepolicy/__init__.py:48 ++msgid "No SELinux Policy installed" msgstr "" -#: ../gui/selinux.tbl:76 -msgid "Disable SELinux protection for dmesg daemon" -+#: ../sepolicy/sepolicy/generate.py:449 -+msgid "User Role types can not be assigned executables." ++#: ../sepolicy/sepolicy/__init__.py:54 ++#, python-format ++msgid "Failed to read %s policy file" msgstr "" -#: ../gui/selinux.tbl:77 -msgid "Disable SELinux protection for dnsmasq daemon" -+#: ../sepolicy/sepolicy/generate.py:455 -+msgid "Only Daemon apps can use an init script.." ++#: ../sepolicy/sepolicy/__init__.py:127 ++msgid "unknown" msgstr "" -#: ../gui/selinux.tbl:78 -msgid "Disable SELinux protection for dovecot daemon" -+#: ../sepolicy/sepolicy/generate.py:473 -+msgid "use_resolve must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:173 ++msgid "Internet Services Daemon" msgstr "" -#: ../gui/selinux.tbl:79 -msgid "Disable SELinux protection for entropyd daemon" -+#: ../sepolicy/sepolicy/generate.py:479 -+msgid "use_syslog must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:177 ++msgid "Existing Domain Type" msgstr "" -#: ../gui/selinux.tbl:80 -msgid "Disable SELinux protection for fetchmail" -+#: ../sepolicy/sepolicy/generate.py:485 -+msgid "use_kerberos must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:178 ++msgid "Minimal Terminal Login User Role" msgstr "" -#: ../gui/selinux.tbl:81 -msgid "Disable SELinux protection for fingerd daemon" -+#: ../sepolicy/sepolicy/generate.py:491 -+msgid "manage_krb5_rcache must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:179 ++msgid "Minimal X Windows Login User Role" msgstr "" -#: ../gui/selinux.tbl:82 -msgid "Disable SELinux protection for freshclam daemon" -+#: ../sepolicy/sepolicy/generate.py:521 -+msgid "USER Types automatically get a tmp type" ++#: ../sepolicy/sepolicy/generate.py:180 ++msgid "Desktop Login User Role" msgstr "" -#: ../gui/selinux.tbl:83 -msgid "Disable SELinux protection for fsdaemon daemon" -+#: ../sepolicy/sepolicy/generate.py:1039 -+msgid "You must enter the executable path for your confined process" ++#: ../sepolicy/sepolicy/generate.py:181 ++msgid "Administrator Login User Role" msgstr "" -#: ../gui/selinux.tbl:84 -msgid "Disable SELinux protection for gpm daemon" -+#: ../sepolicy/sepolicy/generate.py:1272 -+msgid "Type Enforcement file" ++#: ../sepolicy/sepolicy/generate.py:182 ++msgid "Confined Root Administrator Role" msgstr "" -#: ../gui/selinux.tbl:85 ../gui/selinux.tbl:125 -msgid "NFS" -+#: ../sepolicy/sepolicy/generate.py:1273 -+msgid "Interface file" ++#: ../sepolicy/sepolicy/generate.py:187 ++msgid "Valid Types:\n" msgstr "" -#: ../gui/selinux.tbl:85 -msgid "Disable SELinux protection for gss daemon" -+#: ../sepolicy/sepolicy/generate.py:1274 -+msgid "File Contexts file" ++#: ../sepolicy/sepolicy/generate.py:221 ++#, python-format ++msgid "Ports must be numbers or ranges of numbers from 1 to %d " msgstr "" -#: ../gui/selinux.tbl:86 -msgid "Disable SELinux protection for Hal daemon" -+#: ../sepolicy/sepolicy/generate.py:1275 -+msgid "Spec file" ++#: ../sepolicy/sepolicy/generate.py:231 ++msgid "You must enter a valid policy type" msgstr "" -#: ../gui/selinux.tbl:87 -msgid "Compatibility" -+#: ../sepolicy/sepolicy/generate.py:1276 -+msgid "Setup Script" ++#: ../sepolicy/sepolicy/generate.py:234 ++#, python-format ++msgid "You must enter a name for your policy module for your %s." msgstr "" -#: ../gui/selinux.tbl:87 -+#: booleans.py:1 ++#: ../sepolicy/sepolicy/generate.py:355 msgid "" -"Do not audit things that we know to be broken but which are not security " -"risks" -+"Allow ABRT to modify public files used for public file transfer services." ++"Name must be alpha numberic with no spaces. Consider using option \"-n " ++"MODULENAME\"" ++msgstr "" ++ ++#: ../sepolicy/sepolicy/generate.py:447 ++msgid "User Role types can not be assigned executables." msgstr "" -#: ../gui/selinux.tbl:88 -msgid "Disable SELinux protection for hostname daemon" ++#: ../sepolicy/sepolicy/generate.py:453 ++msgid "Only Daemon apps can use an init script.." + msgstr "" + +-#: ../gui/selinux.tbl:89 +-msgid "Disable SELinux protection for hotplug daemon" ++#: ../sepolicy/sepolicy/generate.py:471 ++msgid "use_resolve must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:90 +-msgid "Disable SELinux protection for howl daemon" ++#: ../sepolicy/sepolicy/generate.py:477 ++msgid "use_syslog must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:91 +-msgid "Disable SELinux protection for cups hplip daemon" ++#: ../sepolicy/sepolicy/generate.py:483 ++msgid "use_kerberos must be a boolean value " ++msgstr "" ++ ++#: ../sepolicy/sepolicy/generate.py:489 ++msgid "manage_krb5_rcache must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:92 +-msgid "Disable SELinux protection for httpd rotatelogs" ++#: ../sepolicy/sepolicy/generate.py:519 ++msgid "USER Types automatically get a tmp type" + msgstr "" + +-#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233 +-msgid "HTTPD Service" ++#: ../sepolicy/sepolicy/generate.py:857 ++#, python-format ++msgid "%s policy modules require existing domains" + msgstr "" + +-#: ../gui/selinux.tbl:93 +-msgid "Disable SELinux protection for http suexec" ++#: ../sepolicy/sepolicy/generate.py:1059 ++msgid "You must enter the executable path for your confined process" + msgstr "" + +-#: ../gui/selinux.tbl:94 +-msgid "Disable SELinux protection for hwclock daemon" ++#: ../sepolicy/sepolicy/generate.py:1321 ++msgid "Type Enforcement file" + msgstr "" + +-#: ../gui/selinux.tbl:95 +-msgid "Disable SELinux protection for i18n daemon" ++#: ../sepolicy/sepolicy/generate.py:1322 ++msgid "Interface file" + msgstr "" + +-#: ../gui/selinux.tbl:96 +-msgid "Disable SELinux protection for imazesrv daemon" ++#: ../sepolicy/sepolicy/generate.py:1323 ++msgid "File Contexts file" + msgstr "" + +-#: ../gui/selinux.tbl:97 +-msgid "Disable SELinux protection for inetd child daemons" ++#: ../sepolicy/sepolicy/generate.py:1324 ++msgid "Spec file" + msgstr "" + +-#: ../gui/selinux.tbl:98 +-msgid "Disable SELinux protection for inetd daemon" ++#: ../sepolicy/sepolicy/generate.py:1325 ++msgid "Setup Script" + msgstr "" + +-#: ../gui/selinux.tbl:99 +-msgid "Disable SELinux protection for innd daemon" ++#: booleans.py:1 ++msgid "" ++"Allow ABRT to modify public files used for public file transfer services." + msgstr "" + +-#: ../gui/selinux.tbl:100 +-msgid "Disable SELinux protection for iptables daemon" +#: booleans.py:2 +msgid "" +"Allow ABRT to run in abrt_handle_event_t domain to handle ABRT event scripts" msgstr "" --#: ../gui/selinux.tbl:89 --msgid "Disable SELinux protection for hotplug daemon" +-#: ../gui/selinux.tbl:101 +-msgid "Disable SELinux protection for ircd daemon" +#: booleans.py:3 +msgid "Allow amavis to use JIT compiler" msgstr "" --#: ../gui/selinux.tbl:90 --msgid "Disable SELinux protection for howl daemon" +-#: ../gui/selinux.tbl:102 +-msgid "Disable SELinux protection for irqbalance daemon" +#: booleans.py:4 +msgid "Allow antivirus programs to read non security files on a system" msgstr "" --#: ../gui/selinux.tbl:91 --msgid "Disable SELinux protection for cups hplip daemon" +-#: ../gui/selinux.tbl:103 +-msgid "Disable SELinux protection for iscsi daemon" +#: booleans.py:5 ++msgid "Allow auditadm to exec content" + msgstr "" + +-#: ../gui/selinux.tbl:104 +-msgid "Disable SELinux protection for jabberd daemon" ++#: booleans.py:6 +msgid "" +"Allow users to resolve user passwd entries directly from ldap rather then " +"using a sssd server" msgstr "" --#: ../gui/selinux.tbl:92 --msgid "Disable SELinux protection for httpd rotatelogs" -+#: booleans.py:6 +-#: ../gui/selinux.tbl:105 ../gui/selinux.tbl:107 +-msgid "Kerberos" ++#: booleans.py:7 +msgid "Allow users to login using a radius server" msgstr "" --#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233 --msgid "HTTPD Service" -+#: booleans.py:7 +-#: ../gui/selinux.tbl:105 +-msgid "Disable SELinux protection for kadmind daemon" ++#: booleans.py:8 +msgid "Allow users to login using a yubikey server" msgstr "" --#: ../gui/selinux.tbl:93 --msgid "Disable SELinux protection for http suexec" -+#: booleans.py:8 +-#: ../gui/selinux.tbl:106 +-msgid "Disable SELinux protection for klogd daemon" ++#: booleans.py:9 ++msgid "Allow awstats to purge Apache logs" + msgstr "" + +-#: ../gui/selinux.tbl:107 +-msgid "Disable SELinux protection for krb5kdc daemon" ++#: booleans.py:10 +msgid "" +"Allow cdrecord to read various content. nfs, samba, removable devices, user " +"temp and untrusted content files" msgstr "" --#: ../gui/selinux.tbl:94 --msgid "Disable SELinux protection for hwclock daemon" -+#: booleans.py:9 -+msgid "Allow clamd to use JIT compiler" - msgstr "" - --#: ../gui/selinux.tbl:95 --msgid "Disable SELinux protection for i18n daemon" -+#: booleans.py:10 -+msgid "Allow clamscan to non security files on a system" - msgstr "" - --#: ../gui/selinux.tbl:96 --msgid "Disable SELinux protection for imazesrv daemon" -+#: booleans.py:11 -+msgid "Allow clamscan to read user content" - msgstr "" - --#: ../gui/selinux.tbl:97 --msgid "Disable SELinux protection for inetd child daemons" -+#: booleans.py:12 -+msgid "" -+"Allow Cobbler to modify public files used for public file transfer services." - msgstr "" - --#: ../gui/selinux.tbl:98 --msgid "Disable SELinux protection for inetd daemon" -+#: booleans.py:13 -+msgid "Allow Cobbler to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:99 --msgid "Disable SELinux protection for innd daemon" -+#: booleans.py:14 -+msgid "Allow Cobbler to access cifs file systems." - msgstr "" - --#: ../gui/selinux.tbl:100 --msgid "Disable SELinux protection for iptables daemon" -+#: booleans.py:15 -+msgid "Allow Cobbler to access nfs file systems." - msgstr "" - --#: ../gui/selinux.tbl:101 --msgid "Disable SELinux protection for ircd daemon" -+#: booleans.py:16 -+msgid "Allow collectd to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:102 --msgid "Disable SELinux protection for irqbalance daemon" -+#: booleans.py:17 -+msgid "Allow codnor domain to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:103 --msgid "Disable SELinux protection for iscsi daemon" -+#: booleans.py:18 -+msgid "" -+"Allow system cron jobs to relabel filesystem for restoring file contexts." - msgstr "" - --#: ../gui/selinux.tbl:104 --msgid "Disable SELinux protection for jabberd daemon" -+#: booleans.py:19 -+msgid "Allow cvs daemon to read shadow" - msgstr "" - --#: ../gui/selinux.tbl:105 ../gui/selinux.tbl:107 --msgid "Kerberos" -+#: booleans.py:20 -+msgid "Allow all daemons to write corefiles to /" - msgstr "" - --#: ../gui/selinux.tbl:105 --msgid "Disable SELinux protection for kadmind daemon" -+#: booleans.py:21 -+msgid "Allow all daemons to use tcp wrappers." - msgstr "" - --#: ../gui/selinux.tbl:106 --msgid "Disable SELinux protection for klogd daemon" -+#: booleans.py:22 -+msgid "Allow all daemons the ability to read/write terminals" - msgstr "" - --#: ../gui/selinux.tbl:107 --msgid "Disable SELinux protection for krb5kdc daemon" -+#: booleans.py:23 -+msgid "Allow dbadm to manage files in users home directories" - msgstr "" - -#: ../gui/selinux.tbl:108 -msgid "Disable SELinux protection for ktalk daemons" -+#: booleans.py:24 -+msgid "Allow dbadm to read files in users home directories" ++#: booleans.py:11 ++msgid "Allow clamd to use JIT compiler" msgstr "" -#: ../gui/selinux.tbl:109 -msgid "Disable SELinux protection for kudzu daemon" ++#: booleans.py:12 ++msgid "Allow clamscan to non security files on a system" + msgstr "" + +-#: ../gui/selinux.tbl:110 +-msgid "Disable SELinux protection for locate daemon" ++#: booleans.py:13 ++msgid "Allow clamscan to read user content" + msgstr "" + +-#: ../gui/selinux.tbl:111 +-msgid "Disable SELinux protection for lpd daemon" ++#: booleans.py:14 ++msgid "" ++"Allow Cobbler to modify public files used for public file transfer services." + msgstr "" + +-#: ../gui/selinux.tbl:112 +-msgid "Disable SELinux protection for lrrd daemon" ++#: booleans.py:15 ++msgid "Allow Cobbler to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:113 +-msgid "Disable SELinux protection for lvm daemon" ++#: booleans.py:16 ++msgid "Allow Cobbler to access cifs file systems." + msgstr "" + +-#: ../gui/selinux.tbl:114 +-msgid "Disable SELinux protection for mailman" ++#: booleans.py:17 ++msgid "Allow Cobbler to access nfs file systems." + msgstr "" + +-#: ../gui/selinux.tbl:115 +-msgid "Allow evolution and thunderbird to read user files" ++#: booleans.py:18 ++msgid "Allow collectd to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:116 +-msgid "Disable SELinux protection for mdadm daemon" ++#: booleans.py:19 ++msgid "Allow codnor domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:117 +-msgid "Disable SELinux protection for monopd daemon" ++#: booleans.py:20 ++msgid "" ++"Allow system cron jobs to relabel filesystem for restoring file contexts." + msgstr "" + +-#: ../gui/selinux.tbl:118 +-msgid "Allow the mozilla browser to read user files" ++#: booleans.py:21 ++msgid "Allow cvs daemon to read shadow" + msgstr "" + +-#: ../gui/selinux.tbl:119 +-msgid "Disable SELinux protection for mrtg daemon" ++#: booleans.py:22 ++msgid "Allow all daemons to write corefiles to /" + msgstr "" + +-#: ../gui/selinux.tbl:120 +-msgid "Disable SELinux protection for mysqld daemon" ++#: booleans.py:23 ++msgid "Allow all daemons to use tcp wrappers." + msgstr "" + +-#: ../gui/selinux.tbl:121 +-msgid "Disable SELinux protection for nagios daemon" ++#: booleans.py:24 ++msgid "Allow all daemons the ability to read/write terminals" + msgstr "" + +-#: ../gui/selinux.tbl:122 ../gui/selinux.tbl:128 +-msgid "Name Service" +#: booleans.py:25 ++msgid "Allow dan to manage user files" + msgstr "" + +-#: ../gui/selinux.tbl:122 +-msgid "Disable SELinux protection for named daemon" ++#: booleans.py:26 ++msgid "Allow dan to read user files" + msgstr "" + +-#: ../gui/selinux.tbl:123 +-msgid "Disable SELinux protection for nessusd daemon" ++#: booleans.py:27 ++msgid "Allow dbadm to manage files in users home directories" + msgstr "" + +-#: ../gui/selinux.tbl:124 +-msgid "Disable SELinux protection for NetworkManager" ++#: booleans.py:28 ++msgid "Allow dbadm to read files in users home directories" + msgstr "" + +-#: ../gui/selinux.tbl:125 +-msgid "Disable SELinux protection for nfsd daemon" ++#: booleans.py:29 +msgid "" +"Deny user domains applications to map a memory region as both executable and " +"writable, this is dangerous and the executable should be reported in bugzilla" msgstr "" --#: ../gui/selinux.tbl:110 --msgid "Disable SELinux protection for locate daemon" -+#: booleans.py:26 +-#: ../gui/selinux.tbl:126 ../gui/selinux.tbl:163 ../gui/selinux.tbl:176 +-#: ../gui/selinux.tbl:221 +-msgid "Samba" ++#: booleans.py:30 +msgid "Allow sysadm to debug or ptrace all processes." msgstr "" --#: ../gui/selinux.tbl:111 --msgid "Disable SELinux protection for lpd daemon" -+#: booleans.py:27 +-#: ../gui/selinux.tbl:126 +-msgid "Disable SELinux protection for nmbd daemon" ++#: booleans.py:31 +msgid "Allow dhcpc client applications to execute iptables commands" msgstr "" --#: ../gui/selinux.tbl:112 --msgid "Disable SELinux protection for lrrd daemon" -+#: booleans.py:28 +-#: ../gui/selinux.tbl:127 +-msgid "Disable SELinux protection for nrpe daemon" ++#: booleans.py:32 +msgid "Allow DHCP daemon to use LDAP backends" msgstr "" --#: ../gui/selinux.tbl:113 --msgid "Disable SELinux protection for lvm daemon" -+#: booleans.py:29 +-#: ../gui/selinux.tbl:128 +-msgid "Disable SELinux protection for nscd daemon" ++#: booleans.py:33 +msgid "Allow all domains to use other domains file descriptors" msgstr "" --#: ../gui/selinux.tbl:114 --msgid "Disable SELinux protection for mailman" -+#: booleans.py:30 +-#: ../gui/selinux.tbl:129 +-msgid "Disable SELinux protection for nsd daemon" ++#: booleans.py:34 +msgid "Allow all domains to have the kernel load modules" msgstr "" --#: ../gui/selinux.tbl:115 --msgid "Allow evolution and thunderbird to read user files" -+#: booleans.py:31 +-#: ../gui/selinux.tbl:130 +-msgid "Disable SELinux protection for ntpd daemon" ++#: booleans.py:35 +msgid "Allow the use of the audio devices as the source for the entropy feeds" msgstr "" --#: ../gui/selinux.tbl:116 --msgid "Disable SELinux protection for mdadm daemon" -+#: booleans.py:32 +-#: ../gui/selinux.tbl:131 +-msgid "Disable SELinux protection for oddjob" ++#: booleans.py:36 +msgid "Allow exim to connect to databases (postgres, mysql)" msgstr "" --#: ../gui/selinux.tbl:117 --msgid "Disable SELinux protection for monopd daemon" -+#: booleans.py:33 +-#: ../gui/selinux.tbl:132 +-msgid "Disable SELinux protection for oddjob_mkhomedir" ++#: booleans.py:37 +msgid "Allow exim to create, read, write, and delete unprivileged user files." msgstr "" --#: ../gui/selinux.tbl:118 --msgid "Allow the mozilla browser to read user files" -+#: booleans.py:34 +-#: ../gui/selinux.tbl:133 +-msgid "Disable SELinux protection for openvpn daemon" ++#: booleans.py:38 +msgid "Allow exim to read unprivileged user files." msgstr "" --#: ../gui/selinux.tbl:119 --msgid "Disable SELinux protection for mrtg daemon" -+#: booleans.py:35 +-#: ../gui/selinux.tbl:134 +-msgid "Disable SELinux protection for pam daemon" ++#: booleans.py:39 +msgid "Enable extra rules in the cron domain to support fcron." msgstr "" --#: ../gui/selinux.tbl:120 --msgid "Disable SELinux protection for mysqld daemon" -+#: booleans.py:36 +-#: ../gui/selinux.tbl:135 +-msgid "Disable SELinux protection for pegasus" ++#: booleans.py:40 +msgid "Allow fenced domain to connect to the network using TCP." msgstr "" --#: ../gui/selinux.tbl:121 --msgid "Disable SELinux protection for nagios daemon" -+#: booleans.py:37 +-#: ../gui/selinux.tbl:136 +-msgid "Disable SELinux protection for perdition daemon" ++#: booleans.py:41 +msgid "Allow fenced domain to execute ssh." msgstr "" --#: ../gui/selinux.tbl:122 ../gui/selinux.tbl:128 --msgid "Name Service" -+#: booleans.py:38 +-#: ../gui/selinux.tbl:137 +-msgid "Disable SELinux protection for portmap daemon" ++#: booleans.py:42 ++msgid "Allow all domains to execute in fips_mode" + msgstr "" + +-#: ../gui/selinux.tbl:138 +-msgid "Disable SELinux protection for portslave daemon" ++#: booleans.py:43 +msgid "Allow ftp to read and write files in the user home directories" msgstr "" --#: ../gui/selinux.tbl:122 --msgid "Disable SELinux protection for named daemon" -+#: booleans.py:39 +-#: ../gui/selinux.tbl:139 +-msgid "Disable SELinux protection for postfix" ++#: booleans.py:44 +msgid "" +"Allow ftp servers to upload files, used for public file transfer services. " +"Directories must be labeled public_content_rw_t." msgstr "" --#: ../gui/selinux.tbl:123 --msgid "Disable SELinux protection for nessusd daemon" -+#: booleans.py:40 +-#: ../gui/selinux.tbl:140 +-msgid "Disable SELinux protection for postgresql daemon" ++#: booleans.py:45 +msgid "Allow ftp servers to connect to all ports > 1023" msgstr "" --#: ../gui/selinux.tbl:124 --msgid "Disable SELinux protection for NetworkManager" -+#: booleans.py:41 +-#: ../gui/selinux.tbl:141 +-msgid "pppd" ++#: booleans.py:46 +msgid "Allow ftp servers to connect to mysql database ports" msgstr "" --#: ../gui/selinux.tbl:125 --msgid "Disable SELinux protection for nfsd daemon" -+#: booleans.py:42 +-#: ../gui/selinux.tbl:141 +-msgid "Allow pppd to be run for a regular user" ++#: booleans.py:47 +msgid "" +"Allow ftp servers to login to local users and read/write all files on the " +"system, governed by DAC." msgstr "" --#: ../gui/selinux.tbl:126 ../gui/selinux.tbl:163 ../gui/selinux.tbl:176 --#: ../gui/selinux.tbl:221 --msgid "Samba" -+#: booleans.py:43 +-#: ../gui/selinux.tbl:142 +-msgid "Disable SELinux protection for pptp" ++#: booleans.py:48 +msgid "Allow ftp servers to use cifs used for public file transfer services." msgstr "" --#: ../gui/selinux.tbl:126 --msgid "Disable SELinux protection for nmbd daemon" -+#: booleans.py:44 +-#: ../gui/selinux.tbl:143 +-msgid "Disable SELinux protection for prelink daemon" ++#: booleans.py:49 +msgid "Allow ftp servers to use nfs used for public file transfer services." msgstr "" --#: ../gui/selinux.tbl:127 --msgid "Disable SELinux protection for nrpe daemon" -+#: booleans.py:45 +-#: ../gui/selinux.tbl:144 +-msgid "Disable SELinux protection for privoxy daemon" ++#: booleans.py:50 +msgid "Allow ftp servers to use bind to all unreserved ports for passive mode" msgstr "" --#: ../gui/selinux.tbl:128 --msgid "Disable SELinux protection for nscd daemon" -+#: booleans.py:46 +-#: ../gui/selinux.tbl:145 +-msgid "Disable SELinux protection for ptal daemon" ++#: booleans.py:51 +msgid "Determine whether Git CGI can search home directories." msgstr "" --#: ../gui/selinux.tbl:129 --msgid "Disable SELinux protection for nsd daemon" -+#: booleans.py:47 +-#: ../gui/selinux.tbl:146 +-msgid "Disable SELinux protection for pxe daemon" ++#: booleans.py:52 +msgid "Determine whether Git CGI can access cifs file systems." msgstr "" --#: ../gui/selinux.tbl:130 --msgid "Disable SELinux protection for ntpd daemon" -+#: booleans.py:48 +-#: ../gui/selinux.tbl:147 +-msgid "Disable SELinux protection for pyzord" ++#: booleans.py:53 +msgid "Determine whether Git CGI can access nfs file systems." msgstr "" --#: ../gui/selinux.tbl:131 --msgid "Disable SELinux protection for oddjob" -+#: booleans.py:49 +-#: ../gui/selinux.tbl:148 +-msgid "Disable SELinux protection for quota daemon" ++#: booleans.py:54 +msgid "" +"Determine whether Git session daemon can bind TCP sockets to all unreserved " +"ports." msgstr "" --#: ../gui/selinux.tbl:132 --msgid "Disable SELinux protection for oddjob_mkhomedir" -+#: booleans.py:50 +-#: ../gui/selinux.tbl:149 +-msgid "Disable SELinux protection for radiusd daemon" ++#: booleans.py:55 +msgid "" +"Determine whether calling user domains can execute Git daemon in the " +"git_session_t domain." msgstr "" --#: ../gui/selinux.tbl:133 --msgid "Disable SELinux protection for openvpn daemon" -+#: booleans.py:51 +-#: ../gui/selinux.tbl:150 +-msgid "Disable SELinux protection for radvd daemon" ++#: booleans.py:56 +msgid "Determine whether Git system daemon can search home directories." msgstr "" --#: ../gui/selinux.tbl:134 --msgid "Disable SELinux protection for pam daemon" -+#: booleans.py:52 +-#: ../gui/selinux.tbl:151 +-msgid "Disable SELinux protection for rdisc" ++#: booleans.py:57 +msgid "Determine whether Git system daemon can access cifs file systems." msgstr "" --#: ../gui/selinux.tbl:135 --msgid "Disable SELinux protection for pegasus" -+#: booleans.py:53 +-#: ../gui/selinux.tbl:152 +-msgid "Disable SELinux protection for readahead" ++#: booleans.py:58 +msgid "Determine whether Git system daemon can access nfs file systems." msgstr "" --#: ../gui/selinux.tbl:136 --msgid "Disable SELinux protection for perdition daemon" -+#: booleans.py:54 +-#: ../gui/selinux.tbl:153 +-msgid "Allow programs to read files in non-standard locations (default_t)" ++#: booleans.py:59 +msgid "Allow gitisis daemon to send mail" msgstr "" --#: ../gui/selinux.tbl:137 --msgid "Disable SELinux protection for portmap daemon" -+#: booleans.py:55 +-#: ../gui/selinux.tbl:154 +-msgid "Disable SELinux protection for restorecond" ++#: booleans.py:60 +msgid "Enable reading of urandom for all domains." msgstr "" --#: ../gui/selinux.tbl:138 --msgid "Disable SELinux protection for portslave daemon" -+#: booleans.py:56 +-#: ../gui/selinux.tbl:155 +-msgid "Disable SELinux protection for rhgb daemon" ++#: booleans.py:61 +msgid "" +"Allow usage of the gpg-agent --write-env-file option. This also allows gpg-" +"agent to manage user files." msgstr "" --#: ../gui/selinux.tbl:139 --msgid "Disable SELinux protection for postfix" -+#: booleans.py:57 +-#: ../gui/selinux.tbl:156 +-msgid "Disable SELinux protection for ricci" ++#: booleans.py:62 +msgid "" +"Allow gpg web domain to modify public files used for public file transfer " +"services." msgstr "" --#: ../gui/selinux.tbl:140 --msgid "Disable SELinux protection for postgresql daemon" -+#: booleans.py:58 +-#: ../gui/selinux.tbl:157 +-msgid "Disable SELinux protection for ricci_modclusterd" ++#: booleans.py:63 +msgid "Allow gssd to read temp directory. For access to kerberos tgt." msgstr "" --#: ../gui/selinux.tbl:141 --msgid "pppd" -+#: booleans.py:59 +-#: ../gui/selinux.tbl:158 +-msgid "Disable SELinux protection for rlogind daemon" ++#: booleans.py:64 ++msgid "Allow guest to exec content" + msgstr "" + +-#: ../gui/selinux.tbl:159 +-msgid "Disable SELinux protection for rpcd daemon" ++#: booleans.py:65 +msgid "" +"Allow Apache to modify public files used for public file transfer services. " +"Directories/Files must be labeled public_content_rw_t." msgstr "" --#: ../gui/selinux.tbl:141 --msgid "Allow pppd to be run for a regular user" -+#: booleans.py:60 +-#: ../gui/selinux.tbl:160 +-msgid "Disable SELinux protection for rshd" ++#: booleans.py:66 +msgid "Allow httpd to use built in scripting (usually php)" msgstr "" --#: ../gui/selinux.tbl:142 --msgid "Disable SELinux protection for pptp" -+#: booleans.py:61 +-#: ../gui/selinux.tbl:161 +-msgid "rsync" ++#: booleans.py:67 +msgid "Allow http daemon to check spam" msgstr "" --#: ../gui/selinux.tbl:143 --msgid "Disable SELinux protection for prelink daemon" -+#: booleans.py:62 +-#: ../gui/selinux.tbl:161 +-msgid "Disable SELinux protection for rsync daemon" ++#: booleans.py:68 +msgid "" +"Allow httpd to act as a FTP client connecting to the ftp port and ephemeral " +"ports" msgstr "" --#: ../gui/selinux.tbl:144 --msgid "Disable SELinux protection for privoxy daemon" -+#: booleans.py:63 -+msgid "Allow httpd to connect to the ldap port" - msgstr "" - --#: ../gui/selinux.tbl:145 --msgid "Disable SELinux protection for ptal daemon" -+#: booleans.py:64 -+msgid "Allow http daemon to connect to zabbix" - msgstr "" - --#: ../gui/selinux.tbl:146 --msgid "Disable SELinux protection for pxe daemon" -+#: booleans.py:65 -+msgid "Allow HTTPD scripts and modules to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:147 --msgid "Disable SELinux protection for pyzord" -+#: booleans.py:66 -+msgid "Allow HTTPD scripts and modules to connect to cobbler over the network." - msgstr "" - --#: ../gui/selinux.tbl:148 --msgid "Disable SELinux protection for quota daemon" -+#: booleans.py:67 -+msgid "" -+"Allow HTTPD scripts and modules to connect to databases over the network." - msgstr "" - --#: ../gui/selinux.tbl:149 --msgid "Disable SELinux protection for radiusd daemon" -+#: booleans.py:68 -+msgid "Allow httpd to connect to memcache server" - msgstr "" - --#: ../gui/selinux.tbl:150 --msgid "Disable SELinux protection for radvd daemon" -+#: booleans.py:69 -+msgid "Allow httpd to act as a relay" - msgstr "" - --#: ../gui/selinux.tbl:151 --msgid "Disable SELinux protection for rdisc" -+#: booleans.py:70 -+msgid "Allow http daemon to send mail" - msgstr "" - --#: ../gui/selinux.tbl:152 --msgid "Disable SELinux protection for readahead" -+#: booleans.py:71 -+msgid "Allow Apache to communicate with avahi service via dbus" - msgstr "" - --#: ../gui/selinux.tbl:153 --msgid "Allow programs to read files in non-standard locations (default_t)" -+#: booleans.py:72 -+msgid "Allow httpd cgi support" - msgstr "" - --#: ../gui/selinux.tbl:154 --msgid "Disable SELinux protection for restorecond" -+#: booleans.py:73 -+msgid "Allow httpd to act as a FTP server by listening on the ftp port." - msgstr "" - --#: ../gui/selinux.tbl:155 --msgid "Disable SELinux protection for rhgb daemon" -+#: booleans.py:74 -+msgid "Allow httpd to read home directories" - msgstr "" - --#: ../gui/selinux.tbl:156 --msgid "Disable SELinux protection for ricci" -+#: booleans.py:75 -+msgid "Allow httpd scripts and modules execmem/execstack" - msgstr "" - --#: ../gui/selinux.tbl:157 --msgid "Disable SELinux protection for ricci_modclusterd" -+#: booleans.py:76 -+msgid "Allow HTTPD to connect to port 80 for graceful shutdown" - msgstr "" - --#: ../gui/selinux.tbl:158 --msgid "Disable SELinux protection for rlogind daemon" -+#: booleans.py:77 -+msgid "Allow httpd processes to manage IPA content" - msgstr "" - --#: ../gui/selinux.tbl:159 --msgid "Disable SELinux protection for rpcd daemon" -+#: booleans.py:78 -+msgid "Allow Apache to use mod_auth_ntlm_winbind" - msgstr "" - --#: ../gui/selinux.tbl:160 --msgid "Disable SELinux protection for rshd" -+#: booleans.py:79 -+msgid "Allow Apache to use mod_auth_pam" - msgstr "" - --#: ../gui/selinux.tbl:161 --msgid "rsync" -+#: booleans.py:80 -+msgid "Allow httpd to read user content" - msgstr "" - --#: ../gui/selinux.tbl:161 --msgid "Disable SELinux protection for rsync daemon" -+#: booleans.py:81 -+msgid "Allow Apache to run in stickshift mode, not transition to passenger" - msgstr "" - -#: ../gui/selinux.tbl:162 -msgid "Allow ssh to run from inetd instead of as a daemon" -+#: booleans.py:82 -+msgid "Allow httpd daemon to change its resource limits" ++#: booleans.py:69 ++msgid "Allow httpd to connect to the ldap port" msgstr "" -#: ../gui/selinux.tbl:163 -msgid "Allow Samba to share nfs directories" -+#: booleans.py:83 -+msgid "" -+"Allow HTTPD to run SSI executables in the same domain as system CGI scripts." ++#: booleans.py:70 ++msgid "Allow http daemon to connect to zabbix" msgstr "" -#: ../gui/selinux.tbl:164 ../gui/selinux.tbl:166 -msgid "SASL authentication server" ++#: booleans.py:71 ++msgid "Allow HTTPD scripts and modules to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:164 +-msgid "Allow sasl authentication server to read /etc/shadow" ++#: booleans.py:72 ++msgid "Allow HTTPD scripts and modules to connect to cobbler over the network." + msgstr "" + +-#: ../gui/selinux.tbl:165 ++#: booleans.py:73 + msgid "" +-"Allow X-Windows server to map a memory region as both executable and writable" ++"Allow HTTPD scripts and modules to connect to databases over the network." ++msgstr "" ++ ++#: booleans.py:74 ++msgid "Allow httpd to connect to memcache server" + msgstr "" + +-#: ../gui/selinux.tbl:166 +-msgid "Disable SELinux protection for saslauthd daemon" ++#: booleans.py:75 ++msgid "Allow httpd to act as a relay" + msgstr "" + +-#: ../gui/selinux.tbl:167 +-msgid "Disable SELinux protection for scannerdaemon daemon" ++#: booleans.py:76 ++msgid "Allow http daemon to send mail" + msgstr "" + +-#: ../gui/selinux.tbl:168 +-msgid "Do not allow transition to sysadm_t, sudo and su effected" ++#: booleans.py:77 ++msgid "Allow Apache to communicate with avahi service via dbus" + msgstr "" + +-#: ../gui/selinux.tbl:169 +-msgid "Do not allow any processes to load kernel modules" ++#: booleans.py:78 ++msgid "Allow httpd cgi support" + msgstr "" + +-#: ../gui/selinux.tbl:170 +-msgid "Do not allow any processes to modify kernel SELinux policy" ++#: booleans.py:79 ++msgid "Allow httpd to act as a FTP server by listening on the ftp port." + msgstr "" + +-#: ../gui/selinux.tbl:171 +-msgid "Disable SELinux protection for sendmail daemon" ++#: booleans.py:80 ++msgid "Allow httpd to read home directories" + msgstr "" + +-#: ../gui/selinux.tbl:172 +-msgid "Disable SELinux protection for setrans" ++#: booleans.py:81 ++msgid "Allow httpd scripts and modules execmem/execstack" + msgstr "" + +-#: ../gui/selinux.tbl:173 +-msgid "Disable SELinux protection for setroubleshoot daemon" ++#: booleans.py:82 ++msgid "Allow HTTPD to connect to port 80 for graceful shutdown" + msgstr "" + +-#: ../gui/selinux.tbl:174 +-msgid "Disable SELinux protection for slapd daemon" ++#: booleans.py:83 ++msgid "Allow httpd processes to manage IPA content" + msgstr "" + +-#: ../gui/selinux.tbl:175 +-msgid "Disable SELinux protection for slrnpull daemon" +#: booleans.py:84 ++msgid "Allow Apache to use mod_auth_ntlm_winbind" + msgstr "" + +-#: ../gui/selinux.tbl:176 +-msgid "Disable SELinux protection for smbd daemon" ++#: booleans.py:85 ++msgid "Allow Apache to use mod_auth_pam" + msgstr "" + +-#: ../gui/selinux.tbl:177 +-msgid "Disable SELinux protection for snmpd daemon" ++#: booleans.py:86 ++msgid "Allow httpd to read user content" + msgstr "" + +-#: ../gui/selinux.tbl:178 +-msgid "Disable SELinux protection for snort daemon" ++#: booleans.py:87 ++msgid "Allow Apache to run in stickshift mode, not transition to passenger" + msgstr "" + +-#: ../gui/selinux.tbl:179 +-msgid "Disable SELinux protection for soundd daemon" ++#: booleans.py:88 ++msgid "Allow httpd daemon to change its resource limits" + msgstr "" + +-#: ../gui/selinux.tbl:180 +-msgid "Disable SELinux protection for sound daemon" ++#: booleans.py:89 ++msgid "" ++"Allow HTTPD to run SSI executables in the same domain as system CGI scripts." + msgstr "" + +-#: ../gui/selinux.tbl:181 ../gui/selinux.tbl:182 ../gui/selinux.tbl:183 +-msgid "Spam Protection" ++#: booleans.py:90 +msgid "" +"Allow apache scripts to write to public content, directories/files must be " +"labeled public_rw_content_t." msgstr "" --#: ../gui/selinux.tbl:164 --msgid "Allow sasl authentication server to read /etc/shadow" -+#: booleans.py:85 +-#: ../gui/selinux.tbl:181 +-msgid "Disable SELinux protection for spamd daemon" ++#: booleans.py:91 +msgid "Allow Apache to execute tmp content." msgstr "" --#: ../gui/selinux.tbl:165 -+#: booleans.py:86 - msgid "" --"Allow X-Windows server to map a memory region as both executable and writable" +-#: ../gui/selinux.tbl:182 +-msgid "Allow spamd to access home directories" ++#: booleans.py:92 ++msgid "" +"Unify HTTPD to communicate with the terminal. Needed for entering the " +"passphrase for certificates at the terminal." msgstr "" --#: ../gui/selinux.tbl:166 --msgid "Disable SELinux protection for saslauthd daemon" -+#: booleans.py:87 +-#: ../gui/selinux.tbl:183 +-msgid "Allow Spam Assassin daemon network access" ++#: booleans.py:93 +msgid "Unify HTTPD handling of all content files." msgstr "" --#: ../gui/selinux.tbl:167 --msgid "Disable SELinux protection for scannerdaemon daemon" -+#: booleans.py:88 +-#: ../gui/selinux.tbl:184 +-msgid "Disable SELinux protection for speedmgmt daemon" ++#: booleans.py:94 +msgid "Allow httpd to access cifs file systems" msgstr "" --#: ../gui/selinux.tbl:168 --msgid "Do not allow transition to sysadm_t, sudo and su effected" -+#: booleans.py:89 +-#: ../gui/selinux.tbl:185 ../gui/selinux.tbl:186 +-msgid "Squid" ++#: booleans.py:95 +msgid "Allow httpd to access FUSE file systems" msgstr "" --#: ../gui/selinux.tbl:169 --msgid "Do not allow any processes to load kernel modules" -+#: booleans.py:90 +-#: ../gui/selinux.tbl:185 +-msgid "Allow squid daemon to connect to the network" ++#: booleans.py:96 +msgid "Allow httpd to run gpg" msgstr "" --#: ../gui/selinux.tbl:170 --msgid "Do not allow any processes to modify kernel SELinux policy" -+#: booleans.py:91 +-#: ../gui/selinux.tbl:186 +-msgid "Disable SELinux protection for squid daemon" ++#: booleans.py:97 +msgid "Allow httpd to access nfs file systems" msgstr "" --#: ../gui/selinux.tbl:171 --msgid "Disable SELinux protection for sendmail daemon" -+#: booleans.py:92 +-#: ../gui/selinux.tbl:187 +-msgid "Disable SELinux protection for ssh daemon" ++#: booleans.py:98 +msgid "Allow httpd to communicate with oddjob to start up a service" msgstr "" --#: ../gui/selinux.tbl:172 --msgid "Disable SELinux protection for setrans" -+#: booleans.py:93 +-#: ../gui/selinux.tbl:188 +-msgid "Allow ssh logins as sysadm_r:sysadm_t" ++#: booleans.py:99 +msgid "Allow httpd to access openstack ports" - msgstr "" - --#: ../gui/selinux.tbl:173 --msgid "Disable SELinux protection for setroubleshoot daemon" -+#: booleans.py:94 ++msgstr "" ++ ++#: booleans.py:100 ++msgid "Allow Apache to query NS records" ++msgstr "" ++ ++#: booleans.py:101 +msgid "Allow icecast to connect to all ports, not just sound ports." msgstr "" --#: ../gui/selinux.tbl:174 --msgid "Disable SELinux protection for slapd daemon" -+#: booleans.py:95 -+msgid "" +-#: ../gui/selinux.tbl:189 ++#: booleans.py:102 + msgid "" +-"Allow staff_r users to search the sysadm home dir and read files (such as ~/." +-"bashrc)" +"Allow the Irssi IRC Client to connect to any port, and to bind to any " +"unreserved port." msgstr "" --#: ../gui/selinux.tbl:175 --msgid "Disable SELinux protection for slrnpull daemon" -+#: booleans.py:96 -+msgid "Allow java executable stack" - msgstr "" - --#: ../gui/selinux.tbl:176 --msgid "Disable SELinux protection for smbd daemon" -+#: booleans.py:97 +-#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191 +-msgid "Universal SSL tunnel" ++#: booleans.py:103 +msgid "Allow confined applications to run with kerberos." msgstr "" --#: ../gui/selinux.tbl:177 --msgid "Disable SELinux protection for snmpd daemon" -+#: booleans.py:98 +-#: ../gui/selinux.tbl:190 +-msgid "Disable SELinux protection for stunnel daemon" ++#: booleans.py:104 +msgid "Allow syslogd daemon to send mail" msgstr "" --#: ../gui/selinux.tbl:178 --msgid "Disable SELinux protection for snort daemon" -+#: booleans.py:99 +-#: ../gui/selinux.tbl:191 +-msgid "Allow stunnel daemon to run as standalone, outside of xinetd" ++#: booleans.py:105 +msgid "Allow syslogd the ability to read/write terminals" msgstr "" --#: ../gui/selinux.tbl:179 --msgid "Disable SELinux protection for soundd daemon" -+#: booleans.py:100 +-#: ../gui/selinux.tbl:192 +-msgid "Disable SELinux protection for swat daemon" ++#: booleans.py:106 +msgid "Allow logging in and using the system from /dev/console." msgstr "" --#: ../gui/selinux.tbl:180 --msgid "Disable SELinux protection for sound daemon" -+#: booleans.py:101 +-#: ../gui/selinux.tbl:193 +-msgid "Disable SELinux protection for sxid daemon" ++#: booleans.py:107 +msgid "" +"Control the ability to mmap a low area of the address space, as configured " +"by /proc/sys/kernel/mmap_min_addr." msgstr "" --#: ../gui/selinux.tbl:181 ../gui/selinux.tbl:182 ../gui/selinux.tbl:183 --msgid "Spam Protection" -+#: booleans.py:102 -+msgid "Allow mock to read files in home directories." - msgstr "" - --#: ../gui/selinux.tbl:181 --msgid "Disable SELinux protection for spamd daemon" -+#: booleans.py:103 -+msgid "Allow the mount command to mount any directory or file." - msgstr "" - --#: ../gui/selinux.tbl:182 --msgid "Allow spamd to access home directories" -+#: booleans.py:104 -+msgid "Allow mozilla plugin domain to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:183 --msgid "Allow Spam Assassin daemon network access" -+#: booleans.py:105 -+msgid "" -+"Allow mozilla_plugins to create random content in the users home directory" -+msgstr "" -+ -+#: booleans.py:106 -+msgid "Allow confined web browsers to read home directory content" - msgstr "" - --#: ../gui/selinux.tbl:184 --msgid "Disable SELinux protection for speedmgmt daemon" -+#: booleans.py:107 -+msgid "Allow mplayer executable stack" - msgstr "" - --#: ../gui/selinux.tbl:185 ../gui/selinux.tbl:186 --msgid "Squid" -+#: booleans.py:108 -+msgid "Allow mysqld to connect to all ports" - msgstr "" - --#: ../gui/selinux.tbl:185 --msgid "Allow squid daemon to connect to the network" -+#: booleans.py:109 -+msgid "Allow BIND to bind apache port." - msgstr "" - --#: ../gui/selinux.tbl:186 --msgid "Disable SELinux protection for squid daemon" -+#: booleans.py:110 -+msgid "" -+"Allow BIND to write the master zone files. Generally this is used for " -+"dynamic DNS or zone transfers." - msgstr "" - --#: ../gui/selinux.tbl:187 --msgid "Disable SELinux protection for ssh daemon" -+#: booleans.py:111 -+msgid "Allow any files/directories to be exported read/only via NFS." - msgstr "" - --#: ../gui/selinux.tbl:188 --msgid "Allow ssh logins as sysadm_r:sysadm_t" -+#: booleans.py:112 -+msgid "Allow any files/directories to be exported read/write via NFS." - msgstr "" - --#: ../gui/selinux.tbl:189 -+#: booleans.py:113 - msgid "" --"Allow staff_r users to search the sysadm home dir and read files (such as ~/." --"bashrc)" -+"Allow nfs servers to modify public files used for public file transfer " -+"services. Files/Directories must be labeled public_content_rw_t." - msgstr "" - --#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191 --msgid "Universal SSL tunnel" -+#: booleans.py:114 -+msgid "Allow system to run with NIS" - msgstr "" - --#: ../gui/selinux.tbl:190 --msgid "Disable SELinux protection for stunnel daemon" -+#: booleans.py:115 -+msgid "Allow confined applications to use nscd shared memory." - msgstr "" - --#: ../gui/selinux.tbl:191 --msgid "Allow stunnel daemon to run as standalone, outside of xinetd" -+#: booleans.py:116 -+msgid "Allow nsplugin code to connect to unreserved ports" - msgstr "" - --#: ../gui/selinux.tbl:192 --msgid "Disable SELinux protection for swat daemon" -+#: booleans.py:117 -+msgid "Allow nsplugin code to execmem/execstack" - msgstr "" - --#: ../gui/selinux.tbl:193 --msgid "Disable SELinux protection for sxid daemon" -+#: booleans.py:118 -+msgid "Allow openvpn to read home directories" - msgstr "" - -#: ../gui/selinux.tbl:194 -msgid "Disable SELinux protection for syslogd daemon" -+#: booleans.py:119 -+msgid "Allow piranha-lvs domain to connect to the network using TCP." ++#: booleans.py:108 ++msgid "Allow mock to read files in home directories." msgstr "" -#: ../gui/selinux.tbl:195 -msgid "Disable SELinux protection for system cron jobs" -+#: booleans.py:120 -+msgid "Allow polipo to connect to all ports > 1023" ++#: booleans.py:109 ++msgid "Allow the mount command to mount any directory or file." msgstr "" -#: ../gui/selinux.tbl:196 -msgid "Disable SELinux protection for tcp daemon" ++#: booleans.py:110 ++msgid "Allow mozilla plugin domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:197 +-msgid "Disable SELinux protection for telnet daemon" ++#: booleans.py:111 ++msgid "" ++"Allow mozilla_plugins to create random content in the users home directory" + msgstr "" + +-#: ../gui/selinux.tbl:198 +-msgid "Disable SELinux protection for tftpd daemon" ++#: booleans.py:112 ++msgid "Allow confined web browsers to read home directory content" + msgstr "" + +-#: ../gui/selinux.tbl:199 +-msgid "Disable SELinux protection for transproxy daemon" ++#: booleans.py:113 ++msgid "Allow mplayer executable stack" + msgstr "" + +-#: ../gui/selinux.tbl:200 +-msgid "Disable SELinux protection for udev daemon" ++#: booleans.py:114 ++msgid "Allow mysqld to connect to all ports" + msgstr "" + +-#: ../gui/selinux.tbl:201 +-msgid "Disable SELinux protection for uml daemon" ++#: booleans.py:115 ++msgid "Allow BIND to bind apache port." + msgstr "" + +-#: ../gui/selinux.tbl:202 ++#: booleans.py:116 + msgid "" +-"Allow xinetd to run unconfined, including any services it starts that do not " +-"have a domain transition explicitly defined" ++"Allow BIND to write the master zone files. Generally this is used for " ++"dynamic DNS or zone transfers." ++msgstr "" ++ ++#: booleans.py:117 ++msgid "Allow any files/directories to be exported read/only via NFS." ++msgstr "" ++ ++#: booleans.py:118 ++msgid "Allow any files/directories to be exported read/write via NFS." + msgstr "" + +-#: ../gui/selinux.tbl:203 ++#: booleans.py:119 + msgid "" +-"Allow rc scripts to run unconfined, including any daemon started by an rc " +-"script that does not have a domain transition explicitly defined" ++"Allow nfs servers to modify public files used for public file transfer " ++"services. Files/Directories must be labeled public_content_rw_t." ++msgstr "" ++ ++#: booleans.py:120 ++msgid "Allow system to run with NIS" ++msgstr "" ++ +#: booleans.py:121 ++msgid "Allow confined applications to use nscd shared memory." ++msgstr "" ++ ++#: booleans.py:122 ++msgid "Allow openshift to lockdown app" + msgstr "" + +-#: ../gui/selinux.tbl:204 +-msgid "Allow rpm to run unconfined" ++#: booleans.py:123 ++msgid "Allow openvpn to read home directories" + msgstr "" + +-#: ../gui/selinux.tbl:205 +-msgid "Allow privileged utilities like hotplug and insmod to run unconfined" ++#: booleans.py:124 ++msgid "Allow piranha-lvs domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:206 +-msgid "Disable SELinux protection for updfstab daemon" ++#: booleans.py:125 ++msgid "Allow polipo to connect to all ports > 1023" + msgstr "" + +-#: ../gui/selinux.tbl:207 +-msgid "Disable SELinux protection for uptimed daemon" ++#: booleans.py:126 +msgid "" +"Determine whether Polipo session daemon can bind tcp sockets to all " +"unreserved ports." msgstr "" --#: ../gui/selinux.tbl:197 --msgid "Disable SELinux protection for telnet daemon" -+#: booleans.py:122 -+msgid "" -+"Determine whether calling user domains can execute Polipo daemon in the " -+"polipo_session_t domain." - msgstr "" - --#: ../gui/selinux.tbl:198 --msgid "Disable SELinux protection for tftpd daemon" -+#: booleans.py:123 -+msgid "Determine whether polipo can access cifs file systems." - msgstr "" - --#: ../gui/selinux.tbl:199 --msgid "Disable SELinux protection for transproxy daemon" -+#: booleans.py:124 -+msgid "Determine whether Polipo can access nfs file systems." - msgstr "" - --#: ../gui/selinux.tbl:200 --msgid "Disable SELinux protection for udev daemon" -+#: booleans.py:125 -+msgid "Enable polyinstantiated directory support." - msgstr "" - --#: ../gui/selinux.tbl:201 --msgid "Disable SELinux protection for uml daemon" -+#: booleans.py:126 -+msgid "Allow the portage domains to use NFS mounts (regular nfs_t)" - msgstr "" - --#: ../gui/selinux.tbl:202 --msgid "" --"Allow xinetd to run unconfined, including any services it starts that do not " --"have a domain transition explicitly defined" -+#: booleans.py:127 -+msgid "Allow postfix_local domain full write access to mail_spool directories" - msgstr "" - --#: ../gui/selinux.tbl:203 --msgid "" --"Allow rc scripts to run unconfined, including any daemon started by an rc " --"script that does not have a domain transition explicitly defined" -+#: booleans.py:128 -+msgid "Allow postgresql to use ssh and rsync for point-in-time recovery" - msgstr "" - --#: ../gui/selinux.tbl:204 --msgid "Allow rpm to run unconfined" -+#: booleans.py:129 -+msgid "Allow transmit client label to foreign database" - msgstr "" - --#: ../gui/selinux.tbl:205 --msgid "Allow privileged utilities like hotplug and insmod to run unconfined" -+#: booleans.py:130 -+msgid "Allow database admins to execute DML statement" - msgstr "" - --#: ../gui/selinux.tbl:206 --msgid "Disable SELinux protection for updfstab daemon" -+#: booleans.py:131 -+msgid "Allow unprivileged users to execute DDL statement" - msgstr "" - --#: ../gui/selinux.tbl:207 --msgid "Disable SELinux protection for uptimed daemon" -+#: booleans.py:132 -+msgid "Allow pppd to load kernel modules for certain modems" -+msgstr "" -+ -+#: booleans.py:133 -+msgid "Allow pppd to be run for a regular user" - msgstr "" - -#: ../gui/selinux.tbl:208 -+#: booleans.py:134 ++#: booleans.py:127 msgid "" -"Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only " -"staff_r can do so" -+"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports." ++"Determine whether calling user domains can execute Polipo daemon in the " ++"polipo_session_t domain." ++msgstr "" ++ ++#: booleans.py:128 ++msgid "Determine whether polipo can access cifs file systems." ++msgstr "" ++ ++#: booleans.py:129 ++msgid "Determine whether Polipo can access nfs file systems." ++msgstr "" ++ ++#: booleans.py:130 ++msgid "Enable polyinstantiated directory support." msgstr "" -#: ../gui/selinux.tbl:209 -msgid "Allow users to execute the mount command" -+#: booleans.py:135 -+msgid "Allow Puppet client to manage all file types." ++#: booleans.py:131 ++msgid "Allow postfix_local domain full write access to mail_spool directories" msgstr "" -#: ../gui/selinux.tbl:210 -msgid "Allow regular users direct mouse access (only allow the X server)" -+#: booleans.py:136 -+msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database" ++#: booleans.py:132 ++msgid "Allow postgresql to use ssh and rsync for point-in-time recovery" msgstr "" -#: ../gui/selinux.tbl:211 -msgid "Allow users to run the dmesg command" -+#: booleans.py:137 -+msgid "Allow qemu to connect fully to the network" ++#: booleans.py:133 ++msgid "Allow transmit client label to foreign database" msgstr "" -#: ../gui/selinux.tbl:212 -msgid "Allow users to control network interfaces (also needs USERCTL=true)" -+#: booleans.py:138 -+msgid "Allow qemu to use cifs/Samba file systems" ++#: booleans.py:134 ++msgid "Allow database admins to execute DML statement" msgstr "" -#: ../gui/selinux.tbl:213 -msgid "Allow normal user to execute ping" -+#: booleans.py:139 -+msgid "Allow qemu to use serial/parallel communication ports" ++#: booleans.py:135 ++msgid "Allow unprivileged users to execute DDL statement" msgstr "" -#: ../gui/selinux.tbl:214 -msgid "Allow user to r/w noextattrfile (FAT, CDROM, FLOPPY)" -+#: booleans.py:140 -+msgid "Allow qemu to use nfs file systems" ++#: booleans.py:136 ++msgid "Allow pppd to load kernel modules for certain modems" msgstr "" -#: ../gui/selinux.tbl:215 -msgid "Allow users to rw usb devices" -+#: booleans.py:141 -+msgid "Allow qemu to use usb devices" ++#: booleans.py:137 ++msgid "Allow pppd to be run for a regular user" msgstr "" -#: ../gui/selinux.tbl:216 -+#: booleans.py:142 -+msgid "Allow racoon to read shadow" -+msgstr "" -+ -+#: booleans.py:143 -+msgid "Allow rgmanager domain to connect to the network using TCP." -+msgstr "" -+ -+#: booleans.py:144 ++#: booleans.py:138 msgid "" -"Allow users to run TCP servers (bind to ports and accept connection from the " -"same domain and outside users) disabling this forces FTP passive mode and " -"may change other protocols" -+"Allow rsync to modify public files used for public file transfer services. " -+"Files/Directories must be labeled public_content_rw_t." ++"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports." msgstr "" -#: ../gui/selinux.tbl:217 -msgid "Allow user to stat ttyfiles" -+#: booleans.py:145 -+msgid "Allow rsync to run as a client" ++#: booleans.py:139 ++msgid "Allow Puppet client to manage all file types." msgstr "" -#: ../gui/selinux.tbl:218 -msgid "Disable SELinux protection for uucpd daemon" -+#: booleans.py:146 -+msgid "Allow rsync to export any files/directories read only." ++#: booleans.py:140 ++msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database" msgstr "" -#: ../gui/selinux.tbl:219 -msgid "Disable SELinux protection for vmware daemon" -+#: booleans.py:147 -+msgid "Allow rsync servers to share cifs files systems" ++#: booleans.py:141 ++msgid "Allow racoon to read shadow" msgstr "" -#: ../gui/selinux.tbl:220 -msgid "Disable SELinux protection for watchdog daemon" -+#: booleans.py:148 -+msgid "Allow rsync servers to share nfs files systems" ++#: booleans.py:142 ++msgid "Allow rgmanager domain to connect to the network using TCP." msgstr "" -#: ../gui/selinux.tbl:221 -msgid "Disable SELinux protection for winbind daemon" -+#: booleans.py:149 -+msgid "Allow samba to create new home directories (e.g. via PAM)" ++#: booleans.py:143 ++msgid "" ++"Allow rsync to modify public files used for public file transfer services. " ++"Files/Directories must be labeled public_content_rw_t." msgstr "" -#: ../gui/selinux.tbl:222 -msgid "Disable SELinux protection for xdm daemon" -+#: booleans.py:150 ++#: booleans.py:144 ++msgid "Allow rsync to run as a client" + msgstr "" + +-#: ../gui/selinux.tbl:223 +-msgid "Allow xdm logins as sysadm_r:sysadm_t" ++#: booleans.py:145 ++msgid "Allow rsync to export any files/directories read only." + msgstr "" + +-#: ../gui/selinux.tbl:224 +-msgid "Disable SELinux protection for xen daemon" ++#: booleans.py:146 ++msgid "Allow rsync servers to share cifs files systems" + msgstr "" + +-#: ../gui/selinux.tbl:225 +-msgid "XEN" ++#: booleans.py:147 ++msgid "Allow rsync servers to share nfs files systems" + msgstr "" + +-#: ../gui/selinux.tbl:225 +-msgid "Allow xen to read/write physical disk devices" ++#: booleans.py:148 ++msgid "Allow samba to create new home directories (e.g. via PAM)" + msgstr "" + +-#: ../gui/selinux.tbl:226 +-msgid "Disable SELinux protection for xfs daemon" ++#: booleans.py:149 +msgid "" +"Allow samba to act as the domain controller, add users, groups and change " +"passwords." msgstr "" --#: ../gui/selinux.tbl:223 --msgid "Allow xdm logins as sysadm_r:sysadm_t" -+#: booleans.py:151 -+msgid "Allow samba to share users home directories." - msgstr "" - --#: ../gui/selinux.tbl:224 --msgid "Disable SELinux protection for xen daemon" -+#: booleans.py:152 -+msgid "Allow samba to share any file/directory read only." - msgstr "" - --#: ../gui/selinux.tbl:225 --msgid "XEN" -+#: booleans.py:153 -+msgid "Allow samba to share any file/directory read/write." - msgstr "" - --#: ../gui/selinux.tbl:225 --msgid "Allow xen to read/write physical disk devices" -+#: booleans.py:154 -+msgid "Allow samba to act as a portmapper" - msgstr "" - --#: ../gui/selinux.tbl:226 --msgid "Disable SELinux protection for xfs daemon" -+#: booleans.py:155 -+msgid "Allow samba to run unconfined scripts" - msgstr "" - -#: ../gui/selinux.tbl:227 -msgid "Disable SELinux protection for xen control" -+#: booleans.py:156 -+msgid "Allow samba to export ntfs/fusefs volumes." ++#: booleans.py:150 ++msgid "Allow samba to share users home directories." msgstr "" -#: ../gui/selinux.tbl:228 -msgid "Disable SELinux protection for ypbind daemon" -+#: booleans.py:157 -+msgid "Allow samba to export NFS volumes." ++#: booleans.py:151 ++msgid "Allow samba to share any file/directory read only." msgstr "" -#: ../gui/selinux.tbl:229 -msgid "Disable SELinux protection for NIS Password Daemon" -+#: booleans.py:158 -+msgid "Allow sanlock to read/write fuse files" ++#: booleans.py:152 ++msgid "Allow samba to share any file/directory read/write." msgstr "" -#: ../gui/selinux.tbl:230 -msgid "Disable SELinux protection for ypserv daemon" -+#: booleans.py:159 -+msgid "Allow sanlock to manage nfs files" ++#: booleans.py:153 ++msgid "Allow samba to act as a portmapper" msgstr "" -#: ../gui/selinux.tbl:231 -msgid "Disable SELinux protection for NIS Transfer Daemon" -+#: booleans.py:160 -+msgid "Allow sanlock to manage cifs files" ++#: booleans.py:154 ++msgid "Allow samba to run unconfined scripts" msgstr "" -#: ../gui/selinux.tbl:232 -msgid "Allow SELinux webadm user to manage unprivileged users home directories" -+#: booleans.py:161 -+msgid "Allow sasl to read shadow" ++#: booleans.py:155 ++msgid "Allow samba to export ntfs/fusefs volumes." msgstr "" -#: ../gui/selinux.tbl:233 -msgid "Allow SELinux webadm user to read unprivileged users home directories" ++#: booleans.py:156 ++msgid "Allow samba to export NFS volumes." + msgstr "" + +-#: ../gui/semanagePage.py:126 +-#, python-format +-msgid "Are you sure you want to delete %s '%s'?" ++#: booleans.py:157 ++msgid "Allow sanlock to read/write fuse files" + msgstr "" + +-#: ../gui/semanagePage.py:126 +-#, python-format +-msgid "Delete %s" ++#: booleans.py:158 ++msgid "Allow sanlock to manage nfs files" + msgstr "" + +-#: ../gui/semanagePage.py:134 +-#, python-format +-msgid "Add %s" ++#: booleans.py:159 ++msgid "Allow sanlock to manage cifs files" + msgstr "" + +-#: ../gui/semanagePage.py:148 +-#, python-format +-msgid "Modify %s" ++#: booleans.py:160 ++msgid "Allow sasl to read shadow" + msgstr "" + +-#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 +-msgid "Permissive" ++#: booleans.py:161 ++msgid "Allow secadm to exec content" + msgstr "" + +-#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 +-msgid "Enforcing" +#: booleans.py:162 +msgid "" +"disallow programs, such as newrole, from transitioning to administrative " +"user domains." msgstr "" --#: ../gui/semanagePage.py:126 --#, python-format --msgid "Are you sure you want to delete %s '%s'?" +-#: ../gui/statusPage.py:94 +-msgid "Status" +#: booleans.py:163 +msgid "Disable kernel module loading." msgstr "" --#: ../gui/semanagePage.py:126 --#, python-format --msgid "Delete %s" +-#: ../gui/statusPage.py:133 +#: booleans.py:164 -+msgid "" + msgid "" +-"Changing the policy type will cause a relabel of the entire file system on " +-"the next boot. Relabeling takes a long time depending on the size of the " +-"file system. Do you wish to continue?" +"Boolean to determine whether the system permits loading policy, setting " +"enforcing mode, and changing boolean values. Set this to true and you have " +"to reboot to set it back." msgstr "" --#: ../gui/semanagePage.py:134 --#, python-format --msgid "Add %s" +-#: ../gui/statusPage.py:147 +#: booleans.py:165 +msgid "Allow regular users direct dri device access" - msgstr "" - --#: ../gui/semanagePage.py:148 --#, python-format --msgid "Modify %s" -+#: booleans.py:166 -+msgid "" -+"Allow unconfined executables to make their heap memory executable. Doing " -+"this is a really bad idea. Probably indicates a badly coded executable, but " -+"could indicate an attack. This executable should be reported in bugzilla" - msgstr "" - --#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 --msgid "Permissive" -+#: booleans.py:167 -+msgid "" -+"Allow all unconfined executables to use libraries requiring text relocation " -+"that are not labeled textrel_shlib_t" - msgstr "" - --#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 --msgid "Enforcing" -+#: booleans.py:168 -+msgid "" -+"Allow unconfined executables to make their stack executable. This should " -+"never, ever be necessary. Probably indicates a badly coded executable, but " -+"could indicate an attack. This executable should be reported in bugzilla" - msgstr "" - --#: ../gui/statusPage.py:94 --msgid "Status" -+#: booleans.py:169 -+msgid "Allow users to connect to the local mysql server" - msgstr "" - --#: ../gui/statusPage.py:133 -+#: booleans.py:170 - msgid "" --"Changing the policy type will cause a relabel of the entire file system on " --"the next boot. Relabeling takes a long time depending on the size of the " --"file system. Do you wish to continue?" -+"Allow confined users the ability to execute the ping and traceroute commands." - msgstr "" - --#: ../gui/statusPage.py:147 -+#: booleans.py:171 -+msgid "Allow users to connect to PostgreSQL" +msgstr "" + -+#: booleans.py:172 ++#: booleans.py:166 msgid "" -"Changing to SELinux disabled requires a reboot. It is not recommended. If " -"you later decide to turn SELinux back on, the system will be required to " @@ -13768,74 +13771,81 @@ index a4478db..a61c8f3 100644 -"system, you can go to permissive mode which will only log errors and not " -"enforce SELinux policy. Permissive mode does not require a reboot Do you " -"wish to continue?" -+"Allow user to r/w files on filesystems that do not have extended attributes " -+"(FAT, CDROM, FLOPPY)" ++"Allow unconfined executables to make their heap memory executable. Doing " ++"this is a really bad idea. Probably indicates a badly coded executable, but " ++"could indicate an attack. This executable should be reported in bugzilla" msgstr "" -#: ../gui/statusPage.py:152 -+#: booleans.py:173 ++#: booleans.py:167 msgid "" -"Changing to SELinux enabled will cause a relabel of the entire file system " -"on the next boot. Relabeling takes a long time depending on the size of the " -"file system. Do you wish to continue?" -+"Allow users to run TCP servers (bind to ports and accept connection from the " -+"same domain and outside users) disabling this forces FTP passive mode and " -+"may change other protocols." ++"Allow all unconfined executables to use libraries requiring text relocation " ++"that are not labeled textrel_shlib_t" msgstr "" -#: ../gui/system-config-selinux.glade:11 -msgid "system-config-selinux" -+#: booleans.py:174 -+msgid "Allow user music sharing" ++#: booleans.py:168 ++msgid "" ++"Allow unconfined executables to make their stack executable. This should " ++"never, ever be necessary. Probably indicates a badly coded executable, but " ++"could indicate an attack. This executable should be reported in bugzilla" msgstr "" -#: ../gui/system-config-selinux.glade:12 -+#: booleans.py:175 ++#: booleans.py:169 ++msgid "Allow users to connect to the local mysql server" ++msgstr "" ++ ++#: booleans.py:170 msgid "" -"Copyright (c)2006 Red Hat, Inc.\n" -"Copyright (c) 2006 Dan Walsh " -+"Allow anon internal-sftp to upload files, used for public file transfer " -+"services. Directories must be labeled public_content_rw_t." ++"Allow confined users the ability to execute the ping and traceroute commands." msgstr "" -#: ../gui/system-config-selinux.glade:22 -#: ../gui/system-config-selinux.glade:544 -msgid "Add SELinux Login Mapping" -+#: booleans.py:176 -+msgid "" -+"Allow sftp-internal to read and write files in the user home directories" ++#: booleans.py:171 ++msgid "Allow users to connect to PostgreSQL" msgstr "" -#: ../gui/system-config-selinux.glade:257 -msgid "Add SELinux Network Ports" -+#: booleans.py:177 ++#: booleans.py:172 +msgid "" -+"Allow sftp-internal to login to local users and read/write all files on the " -+"system, governed by DAC." ++"Allow user to r/w files on filesystems that do not have extended attributes " ++"(FAT, CDROM, FLOPPY)" msgstr "" -#: ../gui/system-config-selinux.glade:391 -#: ../gui/system-config-selinux.glade:678 -msgid "SELinux Type" -+#: booleans.py:178 ++#: booleans.py:173 +msgid "" -+"Allow internal-sftp to read and write files in the user ssh home directories." ++"Allow users to run TCP servers (bind to ports and accept connection from the " ++"same domain and outside users) disabling this forces FTP passive mode and " ++"may change other protocols." msgstr "" -#: ../gui/system-config-selinux.glade:622 -msgid "File Specification" -+#: booleans.py:179 -+msgid "Allow sge to connect to the network using any TCP port" ++#: booleans.py:174 ++msgid "Allow user to use ssh chroot environment." msgstr "" -#: ../gui/system-config-selinux.glade:650 -msgid "File Type" -+#: booleans.py:180 -+msgid "Allow sge to access nfs file systems." ++#: booleans.py:175 ++msgid "Allow user music sharing" msgstr "" -#: ../gui/system-config-selinux.glade:727 -+#: booleans.py:181 ++#: booleans.py:176 msgid "" -"all files\n" -"regular file\n" @@ -13845,129 +13855,151 @@ index a4478db..a61c8f3 100644 -"socket\n" -"symbolic link\n" -"named pipe\n" -+"Enable additional permissions needed to support devices on 3ware controllers." ++"Allow anon internal-sftp to upload files, used for public file transfer " ++"services. Directories must be labeled public_content_rw_t." msgstr "" -#: ../gui/system-config-selinux.glade:773 -msgid "MLS" ++#: booleans.py:177 ++msgid "" ++"Allow sftp-internal to read and write files in the user home directories" + msgstr "" + +-#: ../gui/system-config-selinux.glade:837 +-msgid "Add SELinux User" ++#: booleans.py:178 ++msgid "" ++"Allow sftp-internal to login to local users and read/write all files on the " ++"system, governed by DAC." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1079 +-msgid "SELinux Administration" ++#: booleans.py:179 ++msgid "" ++"Allow internal-sftp to read and write files in the user ssh home directories." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1122 +-msgid "Add" ++#: booleans.py:180 ++msgid "Allow sge to connect to the network using any TCP port" + msgstr "" + +-#: ../gui/system-config-selinux.glade:1144 +-msgid "_Properties" ++#: booleans.py:181 ++msgid "Allow sge to access nfs file systems." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1166 +-msgid "_Delete" +#: booleans.py:182 +msgid "" ++"Enable additional permissions needed to support devices on 3ware controllers." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1256 +-msgid "Select Management Object" ++#: booleans.py:183 ++msgid "" +"Allow samba to modify public files used for public file transfer services. " +"Files/Directories must be labeled public_content_rw_t." msgstr "" --#: ../gui/system-config-selinux.glade:837 --msgid "Add SELinux User" -+#: booleans.py:183 +-#: ../gui/system-config-selinux.glade:1273 +-msgid "Select:" ++#: booleans.py:184 +msgid "Allow user spamassassin clients to use the network." msgstr "" --#: ../gui/system-config-selinux.glade:1079 --msgid "SELinux Administration" -+#: booleans.py:184 +-#: ../gui/system-config-selinux.glade:1326 +-msgid "System Default Enforcing Mode" ++#: booleans.py:185 +msgid "Allow spamd to read/write user home directories." msgstr "" --#: ../gui/system-config-selinux.glade:1122 --msgid "Add" -+#: booleans.py:185 -+msgid "" +-#: ../gui/system-config-selinux.glade:1354 ++#: booleans.py:186 + msgid "" +-"Disabled\n" +-"Permissive\n" +-"Enforcing\n" +"Allow squid to connect to all ports, not just HTTP, FTP, and Gopher ports." msgstr "" --#: ../gui/system-config-selinux.glade:1144 --msgid "_Properties" -+#: booleans.py:186 +-#: ../gui/system-config-selinux.glade:1373 +-msgid "Current Enforcing Mode" ++#: booleans.py:187 +msgid "Allow squid to run as a transparent proxy (TPROXY)" msgstr "" --#: ../gui/system-config-selinux.glade:1166 --msgid "_Delete" -+#: booleans.py:187 +-#: ../gui/system-config-selinux.glade:1418 +-msgid "System Default Policy Type: " ++#: booleans.py:188 +msgid "" +"Allow ssh with chroot env to read and write files in the user home " +"directories" msgstr "" --#: ../gui/system-config-selinux.glade:1256 --msgid "Select Management Object" -+#: booleans.py:188 -+msgid "allow host key based authentication" - msgstr "" - --#: ../gui/system-config-selinux.glade:1273 --msgid "Select:" +-#: ../gui/system-config-selinux.glade:1463 +#: booleans.py:189 -+msgid "Allow ssh logins as sysadm_r:sysadm_t" - msgstr "" - --#: ../gui/system-config-selinux.glade:1326 --msgid "System Default Enforcing Mode" ++msgid "allow host key based authentication" ++msgstr "" ++ +#: booleans.py:190 -+msgid "allow staff user to create and transition to svirt domains." - msgstr "" - --#: ../gui/system-config-selinux.glade:1354 ++msgid "Allow ssh logins as sysadm_r:sysadm_t" ++msgstr "" ++ +#: booleans.py:191 -+msgid "Allow the Telepathy connection managers to connect to any network port." ++msgid "Allow staff to exec content" +msgstr "" + +#: booleans.py:192 - msgid "" --"Disabled\n" --"Permissive\n" --"Enforcing\n" -+"Allow the Telepathy connection managers to connect to any generic TCP port." - msgstr "" - --#: ../gui/system-config-selinux.glade:1373 --msgid "Current Enforcing Mode" ++msgid "allow staff user to create and transition to svirt domains." ++msgstr "" ++ +#: booleans.py:193 -+msgid "" -+"Allow tftp to modify public files used for public file transfer services." - msgstr "" - --#: ../gui/system-config-selinux.glade:1418 --msgid "System Default Policy Type: " ++msgid "Allow sysadm to exec content" ++msgstr "" ++ +#: booleans.py:194 -+msgid "Allow tor daemon to bind tcp sockets to all unreserved ports." - msgstr "" - --#: ../gui/system-config-selinux.glade:1463 ++msgid "Allow the Telepathy connection managers to connect to any network port." ++msgstr "" ++ +#: booleans.py:195 msgid "" -"Select if you wish to relabel then entire file system on next reboot. " -"Relabeling can take a very long time, depending on the size of the system. " -"If you are changing policy types or going from disabled to enforcing, a " -"relabel is required." -+"allow unconfined users to transition to the chrome sandbox domains when " -+"running chrome-sandbox" ++"Allow the Telepathy connection managers to connect to any generic TCP port." msgstr "" -#: ../gui/system-config-selinux.glade:1509 -msgid "Relabel on next reboot." +#: booleans.py:196 -+msgid "Allow a user to login as an unconfined domain" ++msgid "" ++"Allow tftp to modify public files used for public file transfer services." msgstr "" -#: ../gui/system-config-selinux.glade:1561 -msgid "label37" +#: booleans.py:197 -+msgid "" -+"Allow unconfined users to transition to the Mozilla plugin domain when " -+"running xulrunner plugin-container." ++msgid "Allow tftp to read and write files in the user home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1598 -msgid "Revert boolean setting to system default" +#: booleans.py:198 -+msgid "Allow video playing tools to run unconfined" ++msgid "Allow tor daemon to bind tcp sockets to all unreserved ports." msgstr "" -#: ../gui/system-config-selinux.glade:1614 -msgid "Toggle between Customized and All Booleans" +#: booleans.py:199 -+msgid "Allow unprivledged user to create and transition to svirt domains." ++msgid "Allow tor to act as a relay" msgstr "" -#: ../gui/system-config-selinux.glade:1645 @@ -13979,207 +14011,243 @@ index a4478db..a61c8f3 100644 -#: ../gui/system-config-selinux.glade:2867 -msgid "Filter" +#: booleans.py:200 -+msgid "Support ecryptfs home directories" ++msgid "" ++"allow unconfined users to transition to the chrome sandbox domains when " ++"running chrome-sandbox" msgstr "" -#: ../gui/system-config-selinux.glade:1734 -msgid "label50" +#: booleans.py:201 -+msgid "Support fusefs home directories" ++msgid "Allow a user to login as an unconfined domain" msgstr "" -#: ../gui/system-config-selinux.glade:1771 -msgid "Add File Context" +#: booleans.py:202 -+msgid "Use lpd server instead of cups" ++msgid "" ++"Allow unconfined users to transition to the Mozilla plugin domain when " ++"running xulrunner plugin-container." msgstr "" -#: ../gui/system-config-selinux.glade:1787 -msgid "Modify File Context" +#: booleans.py:203 -+msgid "Support NFS home directories" ++msgid "Allow video playing tools to run unconfined" msgstr "" -#: ../gui/system-config-selinux.glade:1803 -msgid "Delete File Context" +#: booleans.py:204 -+msgid "Support SAMBA home directories" ++msgid "Allow unprivledged user to create and transition to svirt domains." msgstr "" -#: ../gui/system-config-selinux.glade:1819 -msgid "Toggle between all and customized file context" +#: booleans.py:205 -+msgid "Allow varnishd to connect to all ports, not just HTTP." ++msgid "Support ecryptfs home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1939 -msgid "label38" +#: booleans.py:206 -+msgid "Ignore vbetool mmap_zero errors." ++msgid "Support fusefs home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1976 -msgid "Add SELinux User Mapping" +#: booleans.py:207 -+msgid "" -+"Allow confined virtual guests to use serial/parallel communication ports" ++msgid "Use lpd server instead of cups" msgstr "" -#: ../gui/system-config-selinux.glade:1992 -msgid "Modify SELinux User Mapping" +#: booleans.py:208 -+msgid "" -+"Allow confined virtual guests to use executable memory and executable stack" ++msgid "Support NFS home directories" msgstr "" -#: ../gui/system-config-selinux.glade:2008 -msgid "Delete SELinux User Mapping" +#: booleans.py:209 -+msgid "Allow confined virtual guests to read fuse files" ++msgid "Support SAMBA home directories" msgstr "" -#: ../gui/system-config-selinux.glade:2126 -msgid "label39" +#: booleans.py:210 -+msgid "Allow confined virtual guests to manage nfs files" ++msgid "Allow user to exec content" msgstr "" -#: ../gui/system-config-selinux.glade:2163 -msgid "Add User" +#: booleans.py:211 -+msgid "Allow confined virtual guests to manage cifs files" ++msgid "Allow varnishd to connect to all ports, not just HTTP." msgstr "" -#: ../gui/system-config-selinux.glade:2179 -msgid "Modify User" +#: booleans.py:212 -+msgid "Allow confined virtual guests to interact with the sanlock" ++msgid "Ignore vbetool mmap_zero errors." msgstr "" -#: ../gui/system-config-selinux.glade:2195 -msgid "Delete User" +#: booleans.py:213 -+msgid "Allow confined virtual guests to manage device configuration, (pci)" ++msgid "" ++"Allow confined virtual guests to use serial/parallel communication ports" msgstr "" -#: ../gui/system-config-selinux.glade:2313 -msgid "label41" +#: booleans.py:214 -+msgid "Allow confined virtual guests to use usb devices" ++msgid "" ++"Allow confined virtual guests to use executable memory and executable stack" msgstr "" -#: ../gui/system-config-selinux.glade:2350 -msgid "Add Network Port" +#: booleans.py:215 -+msgid "Allow confined virtual guests to interact with the xserver" ++msgid "Allow confined virtual guests to read fuse files" msgstr "" -#: ../gui/system-config-selinux.glade:2366 -msgid "Edit Network Port" +#: booleans.py:216 -+msgid "Allow webadm to manage files in users home directories" ++msgid "Allow confined virtual guests to manage nfs files" msgstr "" -#: ../gui/system-config-selinux.glade:2382 -msgid "Delete Network Port" +#: booleans.py:217 -+msgid "Allow webadm to read files in users home directories" ++msgid "Allow confined virtual guests to interact with rawip sockets" msgstr "" -#: ../gui/system-config-selinux.glade:2418 -#: ../gui/system-config-selinux.glade:2436 -msgid "Toggle between Customized and All Ports" +#: booleans.py:218 -+msgid "Ignore wine mmap_zero errors." ++msgid "Allow confined virtual guests to manage cifs files" msgstr "" -#: ../gui/system-config-selinux.glade:2556 -msgid "label42" +#: booleans.py:219 -+msgid "Allow the graphical login program to execute bootloader" ++msgid "Allow confined virtual guests to interact with the sanlock" msgstr "" -#: ../gui/system-config-selinux.glade:2593 -msgid "Generate new policy module" +#: booleans.py:220 -+msgid "" -+"Allow the graphical login program to login directly as sysadm_r:sysadm_t" ++msgid "Allow confined virtual guests to manage device configuration, (pci)" msgstr "" -#: ../gui/system-config-selinux.glade:2609 -msgid "Load policy module" +#: booleans.py:221 -+msgid "Allow xen to manage nfs files" ++msgid "Allow confined virtual guests to use usb devices" msgstr "" -#: ../gui/system-config-selinux.glade:2625 -msgid "Remove loadable policy module" +#: booleans.py:222 ++msgid "Allow confined virtual guests to interact with the xserver" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2661 ++#: booleans.py:223 ++msgid "Allow webadm to manage files in users home directories" ++msgstr "" ++ ++#: booleans.py:224 ++msgid "Allow webadm to read files in users home directories" ++msgstr "" ++ ++#: booleans.py:225 ++msgid "Ignore wine mmap_zero errors." ++msgstr "" ++ ++#: booleans.py:226 ++msgid "Allow the graphical login program to execute bootloader" ++msgstr "" ++ ++#: booleans.py:227 + msgid "" +-"Enable/Disable additional audit rules, that are normally not reported in the " +-"log files." ++"Allow the graphical login program to login directly as sysadm_r:sysadm_t" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2781 +-msgid "label44" ++#: booleans.py:228 ++msgid "Allow xen to manage nfs files" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2818 +-msgid "Change process mode to permissive." ++#: booleans.py:229 +msgid "" +"Allow xend to run blktapctrl/tapdisk. Not required if using dedicated " +"logical volumes for disk images." msgstr "" --#: ../gui/system-config-selinux.glade:2661 -+#: booleans.py:223 -+msgid "Allow xend to run qemu-dm. Not required if using paravirt and no vfb." -+msgstr "" -+ -+#: booleans.py:224 - msgid "" --"Enable/Disable additional audit rules, that are normally not reported in the " --"log files." -+"Allow xguest users to configure Network Manager and connect to apache ports" - msgstr "" - --#: ../gui/system-config-selinux.glade:2781 --msgid "label44" -+#: booleans.py:225 -+msgid "Allow xguest users to mount removable media" - msgstr "" - --#: ../gui/system-config-selinux.glade:2818 --msgid "Change process mode to permissive." -+#: booleans.py:226 -+msgid "Allow xguest to use blue tooth devices" - msgstr "" - -#: ../gui/system-config-selinux.glade:2836 -msgid "Change process mode to enforcing" -+#: booleans.py:227 -+msgid "Allows clients to write to the X server shared memory segments." ++#: booleans.py:230 ++msgid "Allow xend to run qemu-dm. Not required if using paravirt and no vfb." msgstr "" -#: ../gui/system-config-selinux.glade:2928 -msgid "Process Domain" -+#: booleans.py:228 -+msgid "Allows XServer to execute writable memory" ++#: booleans.py:231 ++msgid "" ++"Allow xguest users to configure Network Manager and connect to apache ports" msgstr "" -#: ../gui/system-config-selinux.glade:2956 -msgid "label59" -+#: booleans.py:229 -+msgid "Support X userspace object manager" ++#: booleans.py:232 ++msgid "Allow xguest to exec content" msgstr "" -#: ../gui/usersPage.py:138 -#, python-format -msgid "SELinux user '%s' is required" -+#: booleans.py:230 ++#: booleans.py:233 ++msgid "Allow xguest users to mount removable media" ++msgstr "" ++ ++#: booleans.py:234 ++msgid "Allow xguest to use blue tooth devices" ++msgstr "" ++ ++#: booleans.py:235 ++msgid "Allows clients to write to the X server shared memory segments." ++msgstr "" ++ ++#: booleans.py:236 ++msgid "Allows XServer to execute writable memory" ++msgstr "" ++ ++#: booleans.py:237 ++msgid "Support X userspace object manager" ++msgstr "" ++ ++#: booleans.py:238 +msgid "Allow zabbix to connect to unreserved ports" +msgstr "" + -+#: booleans.py:231 ++#: booleans.py:239 +msgid "Allow zebra daemon to write it configuration files" +msgstr "" + -+#: booleans.py:232 ++#: booleans.py:240 +msgid "" +"Allow ZoneMinder to modify public files used for public file transfer " +"services." msgstr "" diff --git a/policycoreutils/po/am.po b/policycoreutils/po/am.po -index a4478db..a61c8f3 100644 +index a4478db..961d921 100644 --- a/policycoreutils/po/am.po +++ b/policycoreutils/po/am.po @@ -8,7 +8,7 @@ msgid "" @@ -14187,7 +14255,7 @@ index a4478db..a61c8f3 100644 "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2012-05-25 07:28-0400\n" -+"POT-Creation-Date: 2012-10-16 12:24-0400\n" ++"POT-Creation-Date: 2013-01-04 12:01-0500\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" @@ -14200,7 +14268,7 @@ index a4478db..a61c8f3 100644 #, c-format msgid "failed to initialize PAM\n" msgstr "" -@@ -73,7 +73,7 @@ msgstr "" +@@ -73,353 +73,359 @@ msgstr "" msgid "authentication failed.\n" msgstr "" @@ -14209,7 +14277,14 @@ index a4478db..a61c8f3 100644 #, c-format msgid "Could not set exec context to %s.\n" msgstr "" -@@ -86,855 +86,870 @@ msgstr "" + +-#: ../audit2allow/audit2allow:230 ++#: ../audit2allow/audit2allow:232 + msgid "******************** IMPORTANT ***********************\n" + msgstr "" + +-#: ../audit2allow/audit2allow:231 ++#: ../audit2allow/audit2allow:233 msgid "To make this policy package active, execute:" msgstr "" @@ -14218,116 +14293,116 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../semanage/seobject.py:225 -+#: ../semanage/seobject.py:200 ++#: ../semanage/seobject.py:194 msgid "Could not create semanage handle" msgstr "" -#: ../semanage/seobject.py:233 -+#: ../semanage/seobject.py:208 ++#: ../semanage/seobject.py:202 msgid "SELinux policy is not managed or store cannot be accessed." msgstr "" -#: ../semanage/seobject.py:238 -+#: ../semanage/seobject.py:213 ++#: ../semanage/seobject.py:207 msgid "Cannot read policy store." msgstr "" -#: ../semanage/seobject.py:243 -+#: ../semanage/seobject.py:218 ++#: ../semanage/seobject.py:212 msgid "Could not establish semanage connection" msgstr "" -#: ../semanage/seobject.py:248 -+#: ../semanage/seobject.py:223 ++#: ../semanage/seobject.py:217 msgid "Could not test MLS enabled status" msgstr "" -#: ../semanage/seobject.py:254 ../semanage/seobject.py:269 -+#: ../semanage/seobject.py:229 ../semanage/seobject.py:244 ++#: ../semanage/seobject.py:223 ../semanage/seobject.py:238 msgid "Not yet implemented" msgstr "" -#: ../semanage/seobject.py:258 -+#: ../semanage/seobject.py:233 ++#: ../semanage/seobject.py:227 msgid "Semanage transaction already in progress" msgstr "" -#: ../semanage/seobject.py:267 -+#: ../semanage/seobject.py:242 ++#: ../semanage/seobject.py:236 msgid "Could not start semanage transaction" msgstr "" -#: ../semanage/seobject.py:278 -+#: ../semanage/seobject.py:254 ++#: ../semanage/seobject.py:248 msgid "Could not commit semanage transaction" msgstr "" -#: ../semanage/seobject.py:283 -+#: ../semanage/seobject.py:259 ++#: ../semanage/seobject.py:253 msgid "Semanage transaction not in progress" msgstr "" -#: ../semanage/seobject.py:295 ../semanage/seobject.py:375 -+#: ../semanage/seobject.py:271 ../semanage/seobject.py:351 ++#: ../semanage/seobject.py:265 ../semanage/seobject.py:345 msgid "Could not list SELinux modules" msgstr "" -#: ../semanage/seobject.py:308 -+#: ../semanage/seobject.py:284 ++#: ../semanage/seobject.py:278 msgid "Modules Name" msgstr "" -#: ../semanage/seobject.py:308 ../gui/modulesPage.py:62 -+#: ../semanage/seobject.py:284 ../gui/modulesPage.py:63 ++#: ../semanage/seobject.py:278 ../gui/modulesPage.py:63 msgid "Version" msgstr "" -#: ../semanage/seobject.py:311 ../gui/statusPage.py:75 -+#: ../semanage/seobject.py:287 ../gui/statusPage.py:75 ++#: ../semanage/seobject.py:281 ../gui/statusPage.py:75 msgid "Disabled" msgstr "" -#: ../semanage/seobject.py:326 -+#: ../semanage/seobject.py:302 ++#: ../semanage/seobject.py:296 #, python-format msgid "Could not disable module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:337 -+#: ../semanage/seobject.py:313 ++#: ../semanage/seobject.py:307 #, python-format msgid "Could not enable module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:352 -+#: ../semanage/seobject.py:328 ++#: ../semanage/seobject.py:322 #, python-format msgid "Could not remove module %s (remove failed)" msgstr "" -#: ../semanage/seobject.py:362 -+#: ../semanage/seobject.py:338 ++#: ../semanage/seobject.py:332 msgid "dontaudit requires either 'on' or 'off'" msgstr "" -#: ../semanage/seobject.py:391 -+#: ../semanage/seobject.py:366 ++#: ../semanage/seobject.py:360 msgid "Builtin Permissive Types" msgstr "" -#: ../semanage/seobject.py:401 -+#: ../semanage/seobject.py:376 ++#: ../semanage/seobject.py:370 msgid "Customized Permissive Types" msgstr "" -#: ../semanage/seobject.py:442 -+#: ../semanage/seobject.py:417 ++#: ../semanage/seobject.py:412 #, python-format msgid "Could not set permissive domain %s (module installation failed)" msgstr "" -#: ../semanage/seobject.py:448 -+#: ../semanage/seobject.py:423 ++#: ../semanage/seobject.py:418 #, python-format msgid "Could not remove permissive domain %s (remove failed)" msgstr "" @@ -14339,119 +14414,119 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1790 ../semanage/seobject.py:1853 -#: ../semanage/seobject.py:1872 ../semanage/seobject.py:1993 -#: ../semanage/seobject.py:2045 -+#: ../semanage/seobject.py:458 ../semanage/seobject.py:532 -+#: ../semanage/seobject.py:578 ../semanage/seobject.py:675 -+#: ../semanage/seobject.py:705 ../semanage/seobject.py:772 -+#: ../semanage/seobject.py:829 ../semanage/seobject.py:1084 -+#: ../semanage/seobject.py:1800 ../semanage/seobject.py:1863 -+#: ../semanage/seobject.py:1882 ../semanage/seobject.py:2003 -+#: ../semanage/seobject.py:2056 ++#: ../semanage/seobject.py:453 ../semanage/seobject.py:527 ++#: ../semanage/seobject.py:573 ../semanage/seobject.py:695 ++#: ../semanage/seobject.py:725 ../semanage/seobject.py:792 ++#: ../semanage/seobject.py:849 ../semanage/seobject.py:1104 ++#: ../semanage/seobject.py:1820 ../semanage/seobject.py:1883 ++#: ../semanage/seobject.py:1902 ../semanage/seobject.py:2025 ++#: ../semanage/seobject.py:2076 #, python-format msgid "Could not create a key for %s" msgstr "" -#: ../semanage/seobject.py:487 ../semanage/seobject.py:561 -#: ../semanage/seobject.py:607 ../semanage/seobject.py:613 -+#: ../semanage/seobject.py:462 ../semanage/seobject.py:536 -+#: ../semanage/seobject.py:582 ../semanage/seobject.py:588 ++#: ../semanage/seobject.py:457 ../semanage/seobject.py:531 ++#: ../semanage/seobject.py:577 ../semanage/seobject.py:583 #, python-format msgid "Could not check if login mapping for %s is defined" msgstr "" -#: ../semanage/seobject.py:496 -+#: ../semanage/seobject.py:471 ++#: ../semanage/seobject.py:466 #, python-format msgid "Linux Group %s does not exist" msgstr "" -#: ../semanage/seobject.py:501 -+#: ../semanage/seobject.py:476 ++#: ../semanage/seobject.py:471 #, python-format msgid "Linux User %s does not exist" msgstr "" -#: ../semanage/seobject.py:505 -+#: ../semanage/seobject.py:480 ++#: ../semanage/seobject.py:475 #, python-format msgid "Could not create login mapping for %s" msgstr "" -#: ../semanage/seobject.py:509 ../semanage/seobject.py:745 -+#: ../semanage/seobject.py:484 ../semanage/seobject.py:720 ++#: ../semanage/seobject.py:479 ../semanage/seobject.py:740 #, python-format msgid "Could not set name for %s" msgstr "" -#: ../semanage/seobject.py:514 ../semanage/seobject.py:755 -+#: ../semanage/seobject.py:489 ../semanage/seobject.py:730 ++#: ../semanage/seobject.py:484 ../semanage/seobject.py:750 #, python-format msgid "Could not set MLS range for %s" msgstr "" -#: ../semanage/seobject.py:518 -+#: ../semanage/seobject.py:493 ++#: ../semanage/seobject.py:488 #, python-format msgid "Could not set SELinux user for %s" msgstr "" -#: ../semanage/seobject.py:522 -+#: ../semanage/seobject.py:497 ++#: ../semanage/seobject.py:492 #, python-format msgid "Could not add login mapping for %s" msgstr "" -#: ../semanage/seobject.py:540 -+#: ../semanage/seobject.py:515 ++#: ../semanage/seobject.py:510 msgid "Requires seuser or serange" msgstr "" -#: ../semanage/seobject.py:563 ../semanage/seobject.py:609 -+#: ../semanage/seobject.py:538 ../semanage/seobject.py:584 ++#: ../semanage/seobject.py:533 ../semanage/seobject.py:579 #, python-format msgid "Login mapping for %s is not defined" msgstr "" -#: ../semanage/seobject.py:567 -+#: ../semanage/seobject.py:542 ++#: ../semanage/seobject.py:537 #, python-format msgid "Could not query seuser for %s" msgstr "" -#: ../semanage/seobject.py:581 -+#: ../semanage/seobject.py:556 ++#: ../semanage/seobject.py:551 #, python-format msgid "Could not modify login mapping for %s" msgstr "" -#: ../semanage/seobject.py:615 -+#: ../semanage/seobject.py:590 ++#: ../semanage/seobject.py:585 #, python-format msgid "Login mapping for %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:619 -+#: ../semanage/seobject.py:594 ++#: ../semanage/seobject.py:589 #, python-format msgid "Could not delete login mapping for %s" msgstr "" -#: ../semanage/seobject.py:641 ../semanage/seobject.py:659 -#: ../semanage/seobject.py:897 -+#: ../semanage/seobject.py:616 ../semanage/seobject.py:634 -+#: ../semanage/seobject.py:872 ++#: ../semanage/seobject.py:611 ../semanage/seobject.py:644 ++#: ../semanage/seobject.py:892 msgid "Could not list login mappings" msgstr "" -#: ../semanage/seobject.py:684 ../semanage/seobject.py:689 -+#: ../semanage/seobject.py:659 ../semanage/seobject.py:664 ++#: ../semanage/seobject.py:672 ../semanage/seobject.py:684 #: ../gui/system-config-selinux.glade:100 msgid "Login Name" msgstr "" -#: ../semanage/seobject.py:684 ../semanage/seobject.py:689 -#: ../semanage/seobject.py:947 ../semanage/seobject.py:952 -+#: ../semanage/seobject.py:659 ../semanage/seobject.py:664 -+#: ../semanage/seobject.py:922 ../semanage/seobject.py:927 ++#: ../semanage/seobject.py:672 ../semanage/seobject.py:684 ++#: ../semanage/seobject.py:942 ../semanage/seobject.py:947 #: ../gui/system-config-selinux.glade:128 #: ../gui/system-config-selinux.glade:915 #: ../gui/system-config-selinux.glade:2285 ../gui/usersPage.py:44 @@ -14459,7 +14534,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../semanage/seobject.py:684 ../gui/system-config-selinux.glade:156 -+#: ../semanage/seobject.py:659 ../gui/system-config-selinux.glade:156 ++#: ../semanage/seobject.py:672 ../gui/system-config-selinux.glade:156 #: ../gui/system-config-selinux.glade:943 msgid "MLS/MCS Range" msgstr "" @@ -14467,602 +14542,554 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:703 ../semanage/seobject.py:734 -#: ../semanage/seobject.py:801 ../semanage/seobject.py:858 -#: ../semanage/seobject.py:864 -+#: ../semanage/seobject.py:678 ../semanage/seobject.py:709 -+#: ../semanage/seobject.py:776 ../semanage/seobject.py:833 -+#: ../semanage/seobject.py:839 ++#: ../semanage/seobject.py:672 ++msgid "Service" ++msgstr "" ++ ++#: ../semanage/seobject.py:698 ../semanage/seobject.py:729 ++#: ../semanage/seobject.py:796 ../semanage/seobject.py:853 ++#: ../semanage/seobject.py:859 #, python-format msgid "Could not check if SELinux user %s is defined" msgstr "" -#: ../semanage/seobject.py:706 ../semanage/seobject.py:807 -#: ../semanage/seobject.py:870 -+#: ../semanage/seobject.py:681 ../semanage/seobject.py:782 -+#: ../semanage/seobject.py:845 ++#: ../semanage/seobject.py:701 ../semanage/seobject.py:802 ++#: ../semanage/seobject.py:865 #, python-format msgid "Could not query user for %s" msgstr "" -#: ../semanage/seobject.py:726 -+#: ../semanage/seobject.py:701 ++#: ../semanage/seobject.py:721 #, python-format msgid "You must add at least one role for %s" msgstr "" -#: ../semanage/seobject.py:741 -+#: ../semanage/seobject.py:716 ++#: ../semanage/seobject.py:736 #, python-format msgid "Could not create SELinux user for %s" msgstr "" -#: ../semanage/seobject.py:750 -+#: ../semanage/seobject.py:725 ++#: ../semanage/seobject.py:745 #, python-format msgid "Could not add role %s for %s" msgstr "" -#: ../semanage/seobject.py:759 -+#: ../semanage/seobject.py:734 ++#: ../semanage/seobject.py:754 #, python-format msgid "Could not set MLS level for %s" msgstr "" -#: ../semanage/seobject.py:762 -+#: ../semanage/seobject.py:737 ++#: ../semanage/seobject.py:757 #, python-format msgid "Could not add prefix %s for %s" msgstr "" -#: ../semanage/seobject.py:765 -+#: ../semanage/seobject.py:740 ++#: ../semanage/seobject.py:760 #, python-format msgid "Could not extract key for %s" msgstr "" -#: ../semanage/seobject.py:769 -+#: ../semanage/seobject.py:744 ++#: ../semanage/seobject.py:764 #, python-format msgid "Could not add SELinux user %s" msgstr "" -#: ../semanage/seobject.py:791 -+#: ../semanage/seobject.py:766 ++#: ../semanage/seobject.py:786 msgid "Requires prefix, roles, level or range" msgstr "" -#: ../semanage/seobject.py:793 -+#: ../semanage/seobject.py:768 ++#: ../semanage/seobject.py:788 msgid "Requires prefix or roles" msgstr "" -#: ../semanage/seobject.py:803 ../semanage/seobject.py:860 -+#: ../semanage/seobject.py:778 ../semanage/seobject.py:835 ++#: ../semanage/seobject.py:798 ../semanage/seobject.py:855 #, python-format msgid "SELinux user %s is not defined" msgstr "" -#: ../semanage/seobject.py:832 -+#: ../semanage/seobject.py:807 ++#: ../semanage/seobject.py:827 #, python-format msgid "Could not modify SELinux user %s" msgstr "" -#: ../semanage/seobject.py:866 -+#: ../semanage/seobject.py:841 ++#: ../semanage/seobject.py:861 #, python-format msgid "SELinux user %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:877 -+#: ../semanage/seobject.py:852 ++#: ../semanage/seobject.py:872 #, python-format msgid "Could not delete SELinux user %s" msgstr "" -#: ../semanage/seobject.py:915 -+#: ../semanage/seobject.py:890 ++#: ../semanage/seobject.py:910 msgid "Could not list SELinux users" msgstr "" -#: ../semanage/seobject.py:921 -+#: ../semanage/seobject.py:896 ++#: ../semanage/seobject.py:916 #, python-format msgid "Could not list roles for user %s" msgstr "" -#: ../semanage/seobject.py:946 -+#: ../semanage/seobject.py:921 ++#: ../semanage/seobject.py:941 msgid "Labeling" msgstr "" -#: ../semanage/seobject.py:946 -+#: ../semanage/seobject.py:921 ++#: ../semanage/seobject.py:941 msgid "MLS/" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "Prefix" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "MCS Level" msgstr "" -#: ../semanage/seobject.py:947 -+#: ../semanage/seobject.py:922 ++#: ../semanage/seobject.py:942 msgid "MCS Range" msgstr "" -#: ../semanage/seobject.py:947 ../semanage/seobject.py:952 -+#: ../semanage/seobject.py:922 ../semanage/seobject.py:927 ++#: ../semanage/seobject.py:942 ../semanage/seobject.py:947 #: ../gui/system-config-selinux.glade:992 ../gui/usersPage.py:59 msgid "SELinux Roles" msgstr "" -#: ../semanage/seobject.py:967 -+#: ../semanage/seobject.py:944 ++#: ../semanage/seobject.py:964 msgid "Protocol udp or tcp is required" msgstr "" -#: ../semanage/seobject.py:969 -+#: ../semanage/seobject.py:946 ++#: ../semanage/seobject.py:966 msgid "Port is required" msgstr "" -#: ../semanage/seobject.py:979 -+#: ../semanage/seobject.py:956 ++#: ../semanage/seobject.py:976 msgid "Invalid Port" msgstr "" -#: ../semanage/seobject.py:983 -+#: ../semanage/seobject.py:960 ++#: ../semanage/seobject.py:980 #, python-format msgid "Could not create a key for %s/%s" msgstr "" -#: ../semanage/seobject.py:994 -+#: ../semanage/seobject.py:971 ++#: ../semanage/seobject.py:991 msgid "Type is required" msgstr "" -#: ../semanage/seobject.py:1000 ../semanage/seobject.py:1059 -#: ../semanage/seobject.py:1114 ../semanage/seobject.py:1120 -+#: ../semanage/seobject.py:974 ../semanage/seobject.py:1036 -+#: ../semanage/seobject.py:1794 ++#: ../semanage/seobject.py:994 ../semanage/seobject.py:1056 ++#: ../semanage/seobject.py:1814 +#, python-format +msgid "Type %s is invalid, must be a port type" +msgstr "" + -+#: ../semanage/seobject.py:980 ../semanage/seobject.py:1042 -+#: ../semanage/seobject.py:1097 ../semanage/seobject.py:1103 ++#: ../semanage/seobject.py:1000 ../semanage/seobject.py:1062 ++#: ../semanage/seobject.py:1117 ../semanage/seobject.py:1123 #, python-format msgid "Could not check if port %s/%s is defined" msgstr "" - --#: ../semanage/seobject.py:1002 -+#: ../semanage/seobject.py:982 - #, python-format - msgid "Port %s/%s already defined" - msgstr "" - --#: ../semanage/seobject.py:1006 -+#: ../semanage/seobject.py:986 - #, python-format - msgid "Could not create port for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1012 -+#: ../semanage/seobject.py:992 - #, python-format - msgid "Could not create context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1016 -+#: ../semanage/seobject.py:996 - #, python-format - msgid "Could not set user in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1020 -+#: ../semanage/seobject.py:1000 - #, python-format - msgid "Could not set role in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1024 -+#: ../semanage/seobject.py:1004 - #, python-format - msgid "Could not set type in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1029 -+#: ../semanage/seobject.py:1009 - #, python-format - msgid "Could not set mls fields in port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1033 -+#: ../semanage/seobject.py:1013 - #, python-format - msgid "Could not set port context for %s/%s" - msgstr "" - --#: ../semanage/seobject.py:1037 -+#: ../semanage/seobject.py:1017 - #, python-format +@@ -469,8 +475,8 @@ msgstr "" msgid "Could not add port %s/%s" msgstr "" -#: ../semanage/seobject.py:1051 ../semanage/seobject.py:1316 -#: ../semanage/seobject.py:1512 -+#: ../semanage/seobject.py:1031 ../semanage/seobject.py:1304 -+#: ../semanage/seobject.py:1503 ++#: ../semanage/seobject.py:1051 ../semanage/seobject.py:1324 ++#: ../semanage/seobject.py:1523 msgid "Requires setype or serange" msgstr "" --#: ../semanage/seobject.py:1053 -+#: ../semanage/seobject.py:1033 +@@ -478,463 +484,472 @@ msgstr "" msgid "Requires setype" msgstr "" -#: ../semanage/seobject.py:1061 ../semanage/seobject.py:1116 -+#: ../semanage/seobject.py:1044 ../semanage/seobject.py:1099 ++#: ../semanage/seobject.py:1064 ../semanage/seobject.py:1119 #, python-format msgid "Port %s/%s is not defined" msgstr "" -#: ../semanage/seobject.py:1065 -+#: ../semanage/seobject.py:1048 ++#: ../semanage/seobject.py:1068 #, python-format msgid "Could not query port %s/%s" msgstr "" -#: ../semanage/seobject.py:1076 -+#: ../semanage/seobject.py:1059 ++#: ../semanage/seobject.py:1079 #, python-format msgid "Could not modify port %s/%s" msgstr "" -#: ../semanage/seobject.py:1089 -+#: ../semanage/seobject.py:1072 ++#: ../semanage/seobject.py:1092 msgid "Could not list the ports" msgstr "" -#: ../semanage/seobject.py:1105 -+#: ../semanage/seobject.py:1088 ++#: ../semanage/seobject.py:1108 #, python-format msgid "Could not delete the port %s" msgstr "" -#: ../semanage/seobject.py:1122 -+#: ../semanage/seobject.py:1105 ++#: ../semanage/seobject.py:1125 #, python-format msgid "Port %s/%s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1126 -+#: ../semanage/seobject.py:1109 ++#: ../semanage/seobject.py:1129 #, python-format msgid "Could not delete port %s/%s" msgstr "" -#: ../semanage/seobject.py:1142 ../semanage/seobject.py:1164 -+#: ../semanage/seobject.py:1125 ../semanage/seobject.py:1147 ++#: ../semanage/seobject.py:1145 ../semanage/seobject.py:1167 msgid "Could not list ports" msgstr "" -#: ../semanage/seobject.py:1203 -+#: ../semanage/seobject.py:1186 ++#: ../semanage/seobject.py:1206 msgid "SELinux Port Type" msgstr "" -#: ../semanage/seobject.py:1203 -+#: ../semanage/seobject.py:1186 ++#: ../semanage/seobject.py:1206 msgid "Proto" msgstr "" -#: ../semanage/seobject.py:1203 ../gui/system-config-selinux.glade:335 -+#: ../semanage/seobject.py:1186 ../gui/system-config-selinux.glade:335 ++#: ../semanage/seobject.py:1206 ../gui/system-config-selinux.glade:335 msgid "Port Number" msgstr "" -#: ../semanage/seobject.py:1222 -+#: ../semanage/seobject.py:1207 ++#: ../semanage/seobject.py:1227 msgid "Node Address is required" msgstr "" -#: ../semanage/seobject.py:1237 -+#: ../semanage/seobject.py:1222 ++#: ../semanage/seobject.py:1242 msgid "Unknown or missing protocol" msgstr "" -#: ../semanage/seobject.py:1251 ../semanage/seobject.py:1450 -#: ../semanage/seobject.py:1728 -msgid "SELinux Type is required" -+#: ../semanage/seobject.py:1236 ++#: ../semanage/seobject.py:1256 +msgid "SELinux node type is required" -+msgstr "" -+ -+#: ../semanage/seobject.py:1239 ../semanage/seobject.py:1307 -+#, python-format -+msgid "Type %s is invalid, must be a node type" msgstr "" -#: ../semanage/seobject.py:1255 ../semanage/seobject.py:1320 -#: ../semanage/seobject.py:1356 ../semanage/seobject.py:1454 -#: ../semanage/seobject.py:1516 ../semanage/seobject.py:1550 -#: ../semanage/seobject.py:1732 -+#: ../semanage/seobject.py:1243 ../semanage/seobject.py:1311 -+#: ../semanage/seobject.py:1347 ../semanage/seobject.py:1445 -+#: ../semanage/seobject.py:1507 ../semanage/seobject.py:1541 -+#: ../semanage/seobject.py:1739 ++#: ../semanage/seobject.py:1259 ../semanage/seobject.py:1327 ++#, python-format ++msgid "Type %s is invalid, must be a node type" ++msgstr "" ++ ++#: ../semanage/seobject.py:1263 ../semanage/seobject.py:1331 ++#: ../semanage/seobject.py:1367 ../semanage/seobject.py:1465 ++#: ../semanage/seobject.py:1527 ../semanage/seobject.py:1561 ++#: ../semanage/seobject.py:1759 #, python-format msgid "Could not create key for %s" msgstr "" -#: ../semanage/seobject.py:1257 ../semanage/seobject.py:1324 -#: ../semanage/seobject.py:1360 ../semanage/seobject.py:1366 -+#: ../semanage/seobject.py:1245 ../semanage/seobject.py:1315 -+#: ../semanage/seobject.py:1351 ../semanage/seobject.py:1357 ++#: ../semanage/seobject.py:1265 ../semanage/seobject.py:1335 ++#: ../semanage/seobject.py:1371 ../semanage/seobject.py:1377 #, python-format msgid "Could not check if addr %s is defined" msgstr "" -#: ../semanage/seobject.py:1266 -+#: ../semanage/seobject.py:1254 ++#: ../semanage/seobject.py:1274 #, python-format msgid "Could not create addr for %s" msgstr "" -#: ../semanage/seobject.py:1272 ../semanage/seobject.py:1470 -#: ../semanage/seobject.py:1690 -+#: ../semanage/seobject.py:1260 ../semanage/seobject.py:1461 -+#: ../semanage/seobject.py:1694 ++#: ../semanage/seobject.py:1280 ../semanage/seobject.py:1481 ++#: ../semanage/seobject.py:1714 #, python-format msgid "Could not create context for %s" msgstr "" -#: ../semanage/seobject.py:1276 -+#: ../semanage/seobject.py:1264 ++#: ../semanage/seobject.py:1284 #, python-format msgid "Could not set mask for %s" msgstr "" -#: ../semanage/seobject.py:1280 -+#: ../semanage/seobject.py:1268 ++#: ../semanage/seobject.py:1288 #, python-format msgid "Could not set user in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1284 -+#: ../semanage/seobject.py:1272 ++#: ../semanage/seobject.py:1292 #, python-format msgid "Could not set role in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1288 -+#: ../semanage/seobject.py:1276 ++#: ../semanage/seobject.py:1296 #, python-format msgid "Could not set type in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1293 -+#: ../semanage/seobject.py:1281 ++#: ../semanage/seobject.py:1301 #, python-format msgid "Could not set mls fields in addr context for %s" msgstr "" -#: ../semanage/seobject.py:1297 -+#: ../semanage/seobject.py:1285 ++#: ../semanage/seobject.py:1305 #, python-format msgid "Could not set addr context for %s" msgstr "" -#: ../semanage/seobject.py:1301 -+#: ../semanage/seobject.py:1289 ++#: ../semanage/seobject.py:1309 #, python-format msgid "Could not add addr %s" msgstr "" -#: ../semanage/seobject.py:1326 ../semanage/seobject.py:1362 -+#: ../semanage/seobject.py:1317 ../semanage/seobject.py:1353 ++#: ../semanage/seobject.py:1337 ../semanage/seobject.py:1373 #, python-format msgid "Addr %s is not defined" msgstr "" -#: ../semanage/seobject.py:1330 -+#: ../semanage/seobject.py:1321 ++#: ../semanage/seobject.py:1341 #, python-format msgid "Could not query addr %s" msgstr "" -#: ../semanage/seobject.py:1340 -+#: ../semanage/seobject.py:1331 ++#: ../semanage/seobject.py:1351 #, python-format msgid "Could not modify addr %s" msgstr "" -#: ../semanage/seobject.py:1368 -+#: ../semanage/seobject.py:1359 ++#: ../semanage/seobject.py:1379 #, python-format msgid "Addr %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1372 -+#: ../semanage/seobject.py:1363 ++#: ../semanage/seobject.py:1383 #, python-format msgid "Could not delete addr %s" msgstr "" -#: ../semanage/seobject.py:1384 -+#: ../semanage/seobject.py:1375 ++#: ../semanage/seobject.py:1395 msgid "Could not deleteall node mappings" msgstr "" -#: ../semanage/seobject.py:1398 -+#: ../semanage/seobject.py:1389 ++#: ../semanage/seobject.py:1409 msgid "Could not list addrs" msgstr "" -#: ../semanage/seobject.py:1458 ../semanage/seobject.py:1520 -#: ../semanage/seobject.py:1554 ../semanage/seobject.py:1560 -+#: ../semanage/seobject.py:1441 ../semanage/seobject.py:1732 ++#: ../semanage/seobject.py:1461 ../semanage/seobject.py:1752 +msgid "SELinux Type is required" +msgstr "" + -+#: ../semanage/seobject.py:1449 ../semanage/seobject.py:1511 -+#: ../semanage/seobject.py:1545 ../semanage/seobject.py:1551 ++#: ../semanage/seobject.py:1469 ../semanage/seobject.py:1531 ++#: ../semanage/seobject.py:1565 ../semanage/seobject.py:1571 #, python-format msgid "Could not check if interface %s is defined" msgstr "" -#: ../semanage/seobject.py:1465 -+#: ../semanage/seobject.py:1456 ++#: ../semanage/seobject.py:1476 #, python-format msgid "Could not create interface for %s" msgstr "" -#: ../semanage/seobject.py:1474 -+#: ../semanage/seobject.py:1465 ++#: ../semanage/seobject.py:1485 #, python-format msgid "Could not set user in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1478 -+#: ../semanage/seobject.py:1469 ++#: ../semanage/seobject.py:1489 #, python-format msgid "Could not set role in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1482 -+#: ../semanage/seobject.py:1473 ++#: ../semanage/seobject.py:1493 #, python-format msgid "Could not set type in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1487 -+#: ../semanage/seobject.py:1478 ++#: ../semanage/seobject.py:1498 #, python-format msgid "Could not set mls fields in interface context for %s" msgstr "" -#: ../semanage/seobject.py:1491 -+#: ../semanage/seobject.py:1482 ++#: ../semanage/seobject.py:1502 #, python-format msgid "Could not set interface context for %s" msgstr "" -#: ../semanage/seobject.py:1495 -+#: ../semanage/seobject.py:1486 ++#: ../semanage/seobject.py:1506 #, python-format msgid "Could not set message context for %s" msgstr "" -#: ../semanage/seobject.py:1499 -+#: ../semanage/seobject.py:1490 ++#: ../semanage/seobject.py:1510 #, python-format msgid "Could not add interface %s" msgstr "" -#: ../semanage/seobject.py:1522 ../semanage/seobject.py:1556 -+#: ../semanage/seobject.py:1513 ../semanage/seobject.py:1547 ++#: ../semanage/seobject.py:1533 ../semanage/seobject.py:1567 #, python-format msgid "Interface %s is not defined" msgstr "" -#: ../semanage/seobject.py:1526 -+#: ../semanage/seobject.py:1517 ++#: ../semanage/seobject.py:1537 #, python-format msgid "Could not query interface %s" msgstr "" -#: ../semanage/seobject.py:1537 -+#: ../semanage/seobject.py:1528 ++#: ../semanage/seobject.py:1548 #, python-format msgid "Could not modify interface %s" msgstr "" -#: ../semanage/seobject.py:1562 -+#: ../semanage/seobject.py:1553 ++#: ../semanage/seobject.py:1573 #, python-format msgid "Interface %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1566 -+#: ../semanage/seobject.py:1557 ++#: ../semanage/seobject.py:1577 #, python-format msgid "Could not delete interface %s" msgstr "" -#: ../semanage/seobject.py:1578 -+#: ../semanage/seobject.py:1569 ++#: ../semanage/seobject.py:1589 msgid "Could not delete all interface mappings" msgstr "" -#: ../semanage/seobject.py:1592 -+#: ../semanage/seobject.py:1583 ++#: ../semanage/seobject.py:1603 msgid "Could not list interfaces" msgstr "" -#: ../semanage/seobject.py:1617 -+#: ../semanage/seobject.py:1608 ++#: ../semanage/seobject.py:1628 msgid "SELinux Interface" msgstr "" -#: ../semanage/seobject.py:1617 ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1608 ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1628 ../semanage/seobject.py:1974 msgid "Context" msgstr "" -#: ../semanage/seobject.py:1667 -+#: ../semanage/seobject.py:1671 ++#: ../semanage/seobject.py:1691 #, python-format msgid "Equivalence class for %s already exists" msgstr "" -#: ../semanage/seobject.py:1673 -+#: ../semanage/seobject.py:1677 ++#: ../semanage/seobject.py:1697 #, python-format msgid "File spec %s conflicts with equivalency rule '%s %s'" msgstr "" -#: ../semanage/seobject.py:1682 -+#: ../semanage/seobject.py:1686 ++#: ../semanage/seobject.py:1706 #, python-format msgid "Equivalence class for %s does not exists" msgstr "" -#: ../semanage/seobject.py:1696 -+#: ../semanage/seobject.py:1700 ++#: ../semanage/seobject.py:1720 #, python-format msgid "Could not set user in file context for %s" msgstr "" -#: ../semanage/seobject.py:1700 -+#: ../semanage/seobject.py:1704 ++#: ../semanage/seobject.py:1724 #, python-format msgid "Could not set role in file context for %s" msgstr "" -#: ../semanage/seobject.py:1705 ../semanage/seobject.py:1762 -+#: ../semanage/seobject.py:1709 ../semanage/seobject.py:1769 ++#: ../semanage/seobject.py:1729 ../semanage/seobject.py:1789 #, python-format msgid "Could not set mls fields in file context for %s" msgstr "" -#: ../semanage/seobject.py:1711 -+#: ../semanage/seobject.py:1715 ++#: ../semanage/seobject.py:1735 msgid "Invalid file specification" msgstr "" -#: ../semanage/seobject.py:1713 -+#: ../semanage/seobject.py:1717 ++#: ../semanage/seobject.py:1737 msgid "File specification can not include spaces" msgstr "" -#: ../semanage/seobject.py:1718 -+#: ../semanage/seobject.py:1722 ++#: ../semanage/seobject.py:1742 #, python-format msgid "" "File spec %s conflicts with equivalency rule '%s %s'; Try adding '%s' instead" @@ -15071,119 +15098,119 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1736 ../semanage/seobject.py:1741 -#: ../semanage/seobject.py:1794 ../semanage/seobject.py:1876 -#: ../semanage/seobject.py:1880 -+#: ../semanage/seobject.py:1735 ++#: ../semanage/seobject.py:1755 +#, python-format +msgid "Type %s is invalid, must be a file or device type" +msgstr "" + -+#: ../semanage/seobject.py:1743 ../semanage/seobject.py:1748 -+#: ../semanage/seobject.py:1804 ../semanage/seobject.py:1886 -+#: ../semanage/seobject.py:1890 ++#: ../semanage/seobject.py:1763 ../semanage/seobject.py:1768 ++#: ../semanage/seobject.py:1824 ../semanage/seobject.py:1906 ++#: ../semanage/seobject.py:1910 #, python-format msgid "Could not check if file context for %s is defined" msgstr "" -#: ../semanage/seobject.py:1749 -+#: ../semanage/seobject.py:1756 ++#: ../semanage/seobject.py:1776 #, python-format msgid "Could not create file context for %s" msgstr "" -#: ../semanage/seobject.py:1757 -+#: ../semanage/seobject.py:1764 ++#: ../semanage/seobject.py:1784 #, python-format msgid "Could not set type in file context for %s" msgstr "" -#: ../semanage/seobject.py:1765 ../semanage/seobject.py:1822 -#: ../semanage/seobject.py:1826 -+#: ../semanage/seobject.py:1772 ../semanage/seobject.py:1832 -+#: ../semanage/seobject.py:1836 ++#: ../semanage/seobject.py:1792 ../semanage/seobject.py:1852 ++#: ../semanage/seobject.py:1856 #, python-format msgid "Could not set file context for %s" msgstr "" -#: ../semanage/seobject.py:1771 -+#: ../semanage/seobject.py:1778 ++#: ../semanage/seobject.py:1798 #, python-format msgid "Could not add file context for %s" msgstr "" -#: ../semanage/seobject.py:1785 -+#: ../semanage/seobject.py:1792 ++#: ../semanage/seobject.py:1812 msgid "Requires setype, serange or seuser" msgstr "" -#: ../semanage/seobject.py:1798 ../semanage/seobject.py:1884 -+#: ../semanage/seobject.py:1808 ../semanage/seobject.py:1894 ++#: ../semanage/seobject.py:1828 ../semanage/seobject.py:1914 #, python-format msgid "File context for %s is not defined" msgstr "" -#: ../semanage/seobject.py:1804 -+#: ../semanage/seobject.py:1814 ++#: ../semanage/seobject.py:1834 #, python-format msgid "Could not query file context for %s" msgstr "" -#: ../semanage/seobject.py:1830 -+#: ../semanage/seobject.py:1840 ++#: ../semanage/seobject.py:1860 #, python-format msgid "Could not modify file context for %s" msgstr "" -#: ../semanage/seobject.py:1843 -+#: ../semanage/seobject.py:1853 ++#: ../semanage/seobject.py:1873 msgid "Could not list the file contexts" msgstr "" -#: ../semanage/seobject.py:1857 -+#: ../semanage/seobject.py:1867 ++#: ../semanage/seobject.py:1887 #, python-format msgid "Could not delete the file context %s" msgstr "" -#: ../semanage/seobject.py:1882 -+#: ../semanage/seobject.py:1892 ++#: ../semanage/seobject.py:1912 #, python-format msgid "File context for %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:1888 -+#: ../semanage/seobject.py:1898 ++#: ../semanage/seobject.py:1918 #, python-format msgid "Could not delete file context for %s" msgstr "" -#: ../semanage/seobject.py:1903 -+#: ../semanage/seobject.py:1913 ++#: ../semanage/seobject.py:1933 msgid "Could not list file contexts" msgstr "" -#: ../semanage/seobject.py:1907 -+#: ../semanage/seobject.py:1917 ++#: ../semanage/seobject.py:1937 msgid "Could not list local file contexts" msgstr "" -#: ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1974 msgid "SELinux fcontext" msgstr "" -#: ../semanage/seobject.py:1944 -+#: ../semanage/seobject.py:1954 ++#: ../semanage/seobject.py:1974 msgid "type" msgstr "" -#: ../semanage/seobject.py:1957 -+#: ../semanage/seobject.py:1967 ++#: ../semanage/seobject.py:1987 msgid "" "\n" "SELinux Distribution fcontext Equivalence \n" msgstr "" -#: ../semanage/seobject.py:1962 -+#: ../semanage/seobject.py:1972 ++#: ../semanage/seobject.py:1992 msgid "" "\n" "SELinux Local fcontext Equivalence \n" @@ -15191,99 +15218,98 @@ index a4478db..a61c8f3 100644 -#: ../semanage/seobject.py:1996 ../semanage/seobject.py:2048 -#: ../semanage/seobject.py:2054 -+#: ../semanage/seobject.py:2006 ../semanage/seobject.py:2059 -+#: ../semanage/seobject.py:2065 ++#: ../semanage/seobject.py:2028 ../semanage/seobject.py:2079 ++#: ../semanage/seobject.py:2085 #, python-format msgid "Could not check if boolean %s is defined" msgstr "" -#: ../semanage/seobject.py:1998 ../semanage/seobject.py:2050 -+#: ../semanage/seobject.py:2008 ../semanage/seobject.py:2061 ++#: ../semanage/seobject.py:2030 ../semanage/seobject.py:2081 #, python-format msgid "Boolean %s is not defined" msgstr "" -#: ../semanage/seobject.py:2002 -+#: ../semanage/seobject.py:2012 ++#: ../semanage/seobject.py:2034 #, python-format msgid "Could not query file context %s" msgstr "" -#: ../semanage/seobject.py:2007 -+#: ../semanage/seobject.py:2017 ++#: ../semanage/seobject.py:2039 #, python-format msgid "You must specify one of the following values: %s" msgstr "" -#: ../semanage/seobject.py:2012 -+#: ../semanage/seobject.py:2022 ++#: ../semanage/seobject.py:2044 #, python-format msgid "Could not set active value of boolean %s" msgstr "" -#: ../semanage/seobject.py:2015 -+#: ../semanage/seobject.py:2025 ++#: ../semanage/seobject.py:2047 #, python-format msgid "Could not modify boolean %s" msgstr "" -#: ../semanage/seobject.py:2033 -+#: ../semanage/seobject.py:2043 ++#: ../semanage/seobject.py:2063 #, python-format msgid "Bad format %s: Record %s" msgstr "" -#: ../semanage/seobject.py:2056 -+#: ../semanage/seobject.py:2067 ++#: ../semanage/seobject.py:2087 #, python-format msgid "Boolean %s is defined in policy, cannot be deleted" msgstr "" -#: ../semanage/seobject.py:2060 -+#: ../semanage/seobject.py:2071 ++#: ../semanage/seobject.py:2091 #, python-format msgid "Could not delete boolean %s" msgstr "" -#: ../semanage/seobject.py:2072 ../semanage/seobject.py:2089 -+#: ../semanage/seobject.py:2083 ../semanage/seobject.py:2100 ++#: ../semanage/seobject.py:2103 ../semanage/seobject.py:2120 msgid "Could not list booleans" msgstr "" -#: ../semanage/seobject.py:2112 -+#: ../semanage/seobject.py:2125 - msgid "unknown" - msgstr "" - +-msgid "unknown" +-msgstr "" +- -#: ../semanage/seobject.py:2125 -+#: ../semanage/seobject.py:2138 ++#: ../semanage/seobject.py:2155 msgid "off" msgstr "" -#: ../semanage/seobject.py:2125 -+#: ../semanage/seobject.py:2138 ++#: ../semanage/seobject.py:2155 msgid "on" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "SELinux boolean" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "State" msgstr "" -#: ../semanage/seobject.py:2139 -+#: ../semanage/seobject.py:2152 ++#: ../semanage/seobject.py:2169 msgid "Default" msgstr "" -#: ../semanage/seobject.py:2139 ../gui/polgen.glade:3355 -#: ../gui/polgengui.py:253 -+#: ../semanage/seobject.py:2152 ../gui/polgen.glade:113 -+#: ../gui/polgengui.py:254 ++#: ../semanage/seobject.py:2169 ../gui/polgen.glade:113 ++#: ../gui/polgengui.py:269 msgid "Description" msgstr "" @@ -15476,7 +15502,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgen.glade:239 ../gui/polgen.glade:259 -+#: ../gui/polgen.glade:316 ../sepolicy/sepolicy/generate.py:183 ++#: ../gui/polgen.glade:316 ../sepolicy/sepolicy/generate.py:171 +msgid "Standard Init Daemon" +msgstr "" + @@ -15488,7 +15514,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:241 ../gui/polgen.py:156 -msgid "Standard Init Daemon" -+#: ../gui/polgen.glade:332 ../sepolicy/sepolicy/generate.py:184 ++#: ../gui/polgen.glade:332 ../sepolicy/sepolicy/generate.py:172 +msgid "DBUS System Daemon" msgstr "" @@ -15505,7 +15531,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:282 -msgid "Internet Services Daemon (inetd)" -+#: ../gui/polgen.glade:366 ../sepolicy/sepolicy/generate.py:186 ++#: ../gui/polgen.glade:366 ../sepolicy/sepolicy/generate.py:174 +msgid "Web Application/Script (CGI)" msgstr "" @@ -15517,7 +15543,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:303 ../gui/polgen.py:159 -msgid "Web Application/Script (CGI)" -+#: ../gui/polgen.glade:383 ../sepolicy/sepolicy/generate.py:187 ++#: ../gui/polgen.glade:383 ../sepolicy/sepolicy/generate.py:176 +msgid "User Application" msgstr "" @@ -15533,7 +15559,7 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../gui/polgen.glade:345 ../gui/polgen.py:161 -+#: ../gui/polgen.glade:400 ../sepolicy/sepolicy/generate.py:188 ++#: ../gui/polgen.glade:400 ../sepolicy/sepolicy/generate.py:175 msgid "Sandbox" msgstr "" @@ -15553,7 +15579,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:455 -msgid "Existing User Roles" -+#: ../gui/polgen.glade:495 ../sepolicy/sepolicy/generate.py:189 ++#: ../gui/polgen.glade:495 +msgid "Minimal Terminal User Role" msgstr "" @@ -15566,7 +15592,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:476 ../gui/polgen.py:162 -msgid "Minimal Terminal User Role" -+#: ../gui/polgen.glade:512 ../sepolicy/sepolicy/generate.py:190 ++#: ../gui/polgen.glade:512 +msgid "Minimal X Windows User Role" msgstr "" @@ -15579,7 +15605,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:497 ../gui/polgen.py:163 -msgid "Minimal X Windows User Role" -+#: ../gui/polgen.glade:529 ../sepolicy/sepolicy/generate.py:191 ++#: ../gui/polgen.glade:529 +msgid "User Role" msgstr "" @@ -15592,7 +15618,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:518 ../gui/polgen.py:164 -msgid "User Role" -+#: ../gui/polgen.glade:546 ../sepolicy/sepolicy/generate.py:192 ++#: ../gui/polgen.glade:546 +msgid "Admin User Role" msgstr "" @@ -15611,7 +15637,7 @@ index a4478db..a61c8f3 100644 -#: ../gui/polgen.glade:585 -msgid "Root Users" -+#: ../gui/polgen.glade:623 ../sepolicy/sepolicy/generate.py:193 ++#: ../gui/polgen.glade:623 +msgid "Root Admin User Role" msgstr "" @@ -15637,7 +15663,7 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgen.glade:779 ../gui/polgengui.py:251 -+#: ../gui/polgen.glade:728 ../gui/polgengui.py:252 ++#: ../gui/polgen.glade:728 ../gui/polgengui.py:267 msgid "Name" msgstr "" @@ -15948,58 +15974,58 @@ index a4478db..a61c8f3 100644 -msgstr "" - -#: ../gui/polgengui.py:261 -+#: ../gui/polgengui.py:262 ++#: ../gui/polgengui.py:277 msgid "Role" msgstr "" -#: ../gui/polgengui.py:268 -+#: ../gui/polgengui.py:269 ++#: ../gui/polgengui.py:284 msgid "Existing_User" msgstr "" -#: ../gui/polgengui.py:282 ../gui/polgengui.py:290 ../gui/polgengui.py:304 -+#: ../gui/polgengui.py:283 ../gui/polgengui.py:291 ../gui/polgengui.py:305 ++#: ../gui/polgengui.py:298 ../gui/polgengui.py:306 ../gui/polgengui.py:320 msgid "Application" msgstr "" -#: ../gui/polgengui.py:352 -+#: ../gui/polgengui.py:353 ++#: ../gui/polgengui.py:363 #, python-format msgid "%s must be a directory" msgstr "" -#: ../gui/polgengui.py:412 ../gui/polgengui.py:693 -+#: ../gui/polgengui.py:413 ../gui/polgengui.py:694 ++#: ../gui/polgengui.py:423 ../gui/polgengui.py:704 msgid "You must select a user" msgstr "" -#: ../gui/polgengui.py:542 -+#: ../gui/polgengui.py:543 ++#: ../gui/polgengui.py:553 msgid "Select executable file to be confined." msgstr "" -#: ../gui/polgengui.py:553 -+#: ../gui/polgengui.py:554 ++#: ../gui/polgengui.py:564 msgid "Select init script file to be confined." msgstr "" -#: ../gui/polgengui.py:563 -+#: ../gui/polgengui.py:564 ++#: ../gui/polgengui.py:574 msgid "Select file(s) that confined application creates or writes" msgstr "" -#: ../gui/polgengui.py:570 -+#: ../gui/polgengui.py:571 ++#: ../gui/polgengui.py:581 msgid "Select directory(s) that the confined application owns and writes into" msgstr "" -#: ../gui/polgengui.py:632 -+#: ../gui/polgengui.py:633 ++#: ../gui/polgengui.py:643 msgid "Select directory to generate policy files in" msgstr "" -#: ../gui/polgengui.py:649 -+#: ../gui/polgengui.py:650 ++#: ../gui/polgengui.py:660 #, python-format msgid "" "Type %s_t already defined in current policy.\n" @@ -16007,12 +16033,12 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgengui.py:649 ../gui/polgengui.py:653 -+#: ../gui/polgengui.py:650 ../gui/polgengui.py:654 ++#: ../gui/polgengui.py:660 ../gui/polgengui.py:664 msgid "Verify Name" msgstr "" -#: ../gui/polgengui.py:653 -+#: ../gui/polgengui.py:654 ++#: ../gui/polgengui.py:664 #, python-format msgid "" "Module %s.pp already loaded in current policy.\n" @@ -16020,18 +16046,18 @@ index a4478db..a61c8f3 100644 msgstr "" -#: ../gui/polgengui.py:699 -+#: ../gui/polgengui.py:700 ++#: ../gui/polgengui.py:710 msgid "" "You must add a name made up of letters and numbers and containing no spaces." msgstr "" -#: ../gui/polgengui.py:713 -+#: ../gui/polgengui.py:714 ++#: ../gui/polgengui.py:724 msgid "You must enter a executable" msgstr "" -#: ../gui/polgengui.py:738 ../gui/system-config-selinux.py:174 -+#: ../gui/polgengui.py:739 ../gui/system-config-selinux.py:174 ++#: ../gui/polgengui.py:749 ../gui/system-config-selinux.py:180 msgid "Configue SELinux" msgstr "" @@ -16119,7 +16145,7 @@ index a4478db..a61c8f3 100644 #: ../gui/portsPage.py:51 ../gui/system-config-selinux.glade:2528 msgid "Network Port" msgstr "" -@@ -1948,1411 +1854,1499 @@ msgstr "" +@@ -1948,1411 +1854,1620 @@ msgstr "" msgid "Group View" msgstr "" @@ -16188,8 +16214,11 @@ index a4478db..a61c8f3 100644 - -#: ../gui/selinux.tbl:3 -msgid "Allow all daemons the ability to use unallocated ttys" --msgstr "" -- ++#: ../gui/semanagePage.py:126 ++#, python-format ++msgid "Are you sure you want to delete %s '%s'?" + msgstr "" + -#: ../gui/selinux.tbl:4 ../gui/selinux.tbl:5 ../gui/selinux.tbl:11 -#: ../gui/selinux.tbl:12 ../gui/selinux.tbl:13 ../gui/selinux.tbl:15 -#: ../gui/selinux.tbl:20 ../gui/selinux.tbl:41 ../gui/selinux.tbl:208 @@ -16197,83 +16226,59 @@ index a4478db..a61c8f3 100644 -#: ../gui/selinux.tbl:213 ../gui/selinux.tbl:214 ../gui/selinux.tbl:215 -#: ../gui/selinux.tbl:216 ../gui/selinux.tbl:217 -msgid "User Privs" --msgstr "" -- --#: ../gui/selinux.tbl:4 --msgid "" --"Allow gadmin SELinux user account to execute files in home directory or /tmp" --msgstr "" -- --#: ../gui/selinux.tbl:5 --msgid "" --"Allow guest SELinux user account to execute files in home directory or /tmp" --msgstr "" -- --#: ../gui/selinux.tbl:6 ../gui/selinux.tbl:9 ../gui/selinux.tbl:16 --msgid "Memory Protection" --msgstr "" -- --#: ../gui/selinux.tbl:6 --msgid "Allow java executable stack" -+#: ../gui/semanagePage.py:126 -+#, python-format -+msgid "Are you sure you want to delete %s '%s'?" - msgstr "" - --#: ../gui/selinux.tbl:7 ../gui/selinux.tbl:8 ../gui/selinux.tbl:35 --#: ../gui/selinux.tbl:209 --msgid "Mount" +#: ../gui/semanagePage.py:126 +#, python-format +msgid "Delete %s" msgstr "" --#: ../gui/selinux.tbl:7 --msgid "Allow mount to mount any file" +-#: ../gui/selinux.tbl:4 +-msgid "" +-"Allow gadmin SELinux user account to execute files in home directory or /tmp" +#: ../gui/semanagePage.py:134 +#, python-format +msgid "Add %s" msgstr "" --#: ../gui/selinux.tbl:8 --msgid "Allow mount to mount any directory" +-#: ../gui/selinux.tbl:5 +-msgid "" +-"Allow guest SELinux user account to execute files in home directory or /tmp" +#: ../gui/semanagePage.py:148 +#, python-format +msgid "Modify %s" msgstr "" --#: ../gui/selinux.tbl:9 --msgid "Allow mplayer executable stack" +-#: ../gui/selinux.tbl:6 ../gui/selinux.tbl:9 ../gui/selinux.tbl:16 +-msgid "Memory Protection" +#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 +msgid "Permissive" msgstr "" --#: ../gui/selinux.tbl:10 ../gui/selinux.tbl:162 ../gui/selinux.tbl:187 --#: ../gui/selinux.tbl:188 --msgid "SSH" +-#: ../gui/selinux.tbl:6 +-msgid "Allow java executable stack" +#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 +msgid "Enforcing" msgstr "" --#: ../gui/selinux.tbl:10 --msgid "Allow ssh to run ssh-keysign" +-#: ../gui/selinux.tbl:7 ../gui/selinux.tbl:8 ../gui/selinux.tbl:35 +-#: ../gui/selinux.tbl:209 +-msgid "Mount" +#: ../gui/statusPage.py:94 +msgid "Status" msgstr "" --#: ../gui/selinux.tbl:11 +-#: ../gui/selinux.tbl:7 +-msgid "Allow mount to mount any file" +#: ../gui/statusPage.py:133 - msgid "" --"Allow staff SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Changing the policy type will cause a relabel of the entire file system on " +"the next boot. Relabeling takes a long time depending on the size of the " +"file system. Do you wish to continue?" msgstr "" --#: ../gui/selinux.tbl:12 +-#: ../gui/selinux.tbl:8 +-msgid "Allow mount to mount any directory" +#: ../gui/statusPage.py:147 - msgid "" --"Allow sysadm SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Changing to SELinux disabled requires a reboot. It is not recommended. If " +"you later decide to turn SELinux back on, the system will be required to " +"relabel. If you just want to see if SELinux is causing a problem on your " @@ -16282,72 +16287,70 @@ index a4478db..a61c8f3 100644 +"wish to continue?" msgstr "" --#: ../gui/selinux.tbl:13 +-#: ../gui/selinux.tbl:9 +-msgid "Allow mplayer executable stack" +#: ../gui/statusPage.py:152 - msgid "" --"Allow unconfined SELinux user account to execute files in home directory or /" --"tmp" --msgstr "" -- --#: ../gui/selinux.tbl:14 --msgid "Network Configuration" ++msgid "" +"Changing to SELinux enabled will cause a relabel of the entire file system " +"on the next boot. Relabeling takes a long time depending on the size of the " +"file system. Do you wish to continue?" msgstr "" --#: ../gui/selinux.tbl:14 --msgid "Allow unlabeled packets to flow on the network" +-#: ../gui/selinux.tbl:10 ../gui/selinux.tbl:162 ../gui/selinux.tbl:187 +-#: ../gui/selinux.tbl:188 +-msgid "SSH" +#: ../gui/system-config-selinux.glade:11 +msgid "system-config-selinux" msgstr "" --#: ../gui/selinux.tbl:15 +-#: ../gui/selinux.tbl:10 +-msgid "Allow ssh to run ssh-keysign" +#: ../gui/system-config-selinux.glade:12 - msgid "" --"Allow user SELinux user account to execute files in home directory or /tmp" ++msgid "" +"Copyright (c)2006 Red Hat, Inc.\n" +"Copyright (c) 2006 Dan Walsh " msgstr "" --#: ../gui/selinux.tbl:16 --msgid "Allow unconfined to dyntrans to unconfined_execmem" +-#: ../gui/selinux.tbl:11 +-msgid "" +-"Allow staff SELinux user account to execute files in home directory or /tmp" +#: ../gui/system-config-selinux.glade:22 +#: ../gui/system-config-selinux.glade:544 +msgid "Add SELinux Login Mapping" msgstr "" --#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120 --#: ../gui/selinux.tbl:140 --msgid "Databases" +-#: ../gui/selinux.tbl:12 +-msgid "" +-"Allow sysadm SELinux user account to execute files in home directory or /tmp" +#: ../gui/system-config-selinux.glade:257 +msgid "Add SELinux Network Ports" msgstr "" --#: ../gui/selinux.tbl:17 --msgid "Allow user to connect to mysql socket" +-#: ../gui/selinux.tbl:13 +-msgid "" +-"Allow unconfined SELinux user account to execute files in home directory or /" +-"tmp" +#: ../gui/system-config-selinux.glade:391 +#: ../gui/system-config-selinux.glade:678 +msgid "SELinux Type" msgstr "" --#: ../gui/selinux.tbl:18 --msgid "Allow user to connect to postgres socket" +-#: ../gui/selinux.tbl:14 +-msgid "Network Configuration" +#: ../gui/system-config-selinux.glade:622 +msgid "File Specification" msgstr "" --#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223 --msgid "XServer" +-#: ../gui/selinux.tbl:14 +-msgid "Allow unlabeled packets to flow on the network" +#: ../gui/system-config-selinux.glade:650 +msgid "File Type" msgstr "" --#: ../gui/selinux.tbl:19 --msgid "Allow clients to write to X shared memory" --msgstr "" +-#: ../gui/selinux.tbl:15 +#: ../gui/system-config-selinux.glade:727 -+msgid "" + msgid "" +-"Allow user SELinux user account to execute files in home directory or /tmp" +"all files\n" +"regular file\n" +"directory\n" @@ -16356,32 +16359,47 @@ index a4478db..a61c8f3 100644 +"socket\n" +"symbolic link\n" +"named pipe\n" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:16 +-msgid "Allow unconfined to dyntrans to unconfined_execmem" +#: ../gui/system-config-selinux.glade:773 +msgid "MLS" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120 +-#: ../gui/selinux.tbl:140 +-msgid "Databases" +#: ../gui/system-config-selinux.glade:837 +msgid "Add SELinux User" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:17 +-msgid "Allow user to connect to mysql socket" +#: ../gui/system-config-selinux.glade:1079 +msgid "SELinux Administration" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:18 +-msgid "Allow user to connect to postgres socket" +#: ../gui/system-config-selinux.glade:1122 +msgid "Add" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223 +-msgid "XServer" +-msgstr "" +#: ../gui/system-config-selinux.glade:1144 +msgid "_Properties" +msgstr "" -+ + +-#: ../gui/selinux.tbl:19 +-msgid "Allow clients to write to X shared memory" +#: ../gui/system-config-selinux.glade:1166 +msgid "_Delete" -+msgstr "" -+ + msgstr "" + +-#: ../gui/selinux.tbl:20 +#: ../gui/system-config-selinux.glade:1256 +msgid "Select Management Object" +msgstr "" @@ -16395,79 +16413,24 @@ index a4478db..a61c8f3 100644 +msgstr "" + +#: ../gui/system-config-selinux.glade:1354 -+msgid "" + msgid "" +-"Allow xguest SELinux user account to execute files in home directory or /tmp" +"Disabled\n" +"Permissive\n" +"Enforcing\n" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1373 -+msgid "Current Enforcing Mode" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1418 -+msgid "System Default Policy Type: " -+msgstr "" - --#: ../gui/selinux.tbl:20 -+#: ../gui/system-config-selinux.glade:1463 - msgid "" --"Allow xguest SELinux user account to execute files in home directory or /tmp" -+"Select if you wish to relabel then entire file system on next reboot. " -+"Relabeling can take a very long time, depending on the size of the system. " -+"If you are changing policy types or going from disabled to enforcing, a " -+"relabel is required." msgstr "" -#: ../gui/selinux.tbl:21 ../gui/selinux.tbl:228 ../gui/selinux.tbl:229 -#: ../gui/selinux.tbl:231 -msgid "NIS" -+#: ../gui/system-config-selinux.glade:1509 -+msgid "Relabel on next reboot." -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1561 -+msgid "label37" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1598 -+msgid "Revert boolean setting to system default" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1614 -+msgid "Toggle between Customized and All Booleans" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1645 -+#: ../gui/system-config-selinux.glade:1850 -+#: ../gui/system-config-selinux.glade:2037 -+#: ../gui/system-config-selinux.glade:2224 -+#: ../gui/system-config-selinux.glade:2467 -+#: ../gui/system-config-selinux.glade:2692 -+#: ../gui/system-config-selinux.glade:2867 -+msgid "Filter" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1734 -+msgid "label50" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1771 -+msgid "Add File Context" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1787 -+msgid "Modify File Context" -+msgstr "" -+ -+#: ../gui/system-config-selinux.glade:1803 -+msgid "Delete File Context" ++#: ../gui/system-config-selinux.glade:1373 ++msgid "Current Enforcing Mode" msgstr "" -#: ../gui/selinux.tbl:21 -msgid "Allow daemons to run with NIS" -+#: ../gui/system-config-selinux.glade:1819 -+msgid "Toggle between all and customized file context" ++#: ../gui/system-config-selinux.glade:1418 ++msgid "System Default Policy Type: " msgstr "" -#: ../gui/selinux.tbl:22 ../gui/selinux.tbl:23 ../gui/selinux.tbl:24 @@ -16476,1505 +16439,1613 @@ index a4478db..a61c8f3 100644 -#: ../gui/selinux.tbl:73 ../gui/selinux.tbl:74 ../gui/selinux.tbl:115 -#: ../gui/selinux.tbl:118 -msgid "Web Applications" -+#: ../gui/system-config-selinux.glade:1939 -+msgid "label38" ++#: ../gui/system-config-selinux.glade:1463 ++msgid "" ++"Select if you wish to relabel then entire file system on next reboot. " ++"Relabeling can take a very long time, depending on the size of the system. " ++"If you are changing policy types or going from disabled to enforcing, a " ++"relabel is required." msgstr "" -#: ../gui/selinux.tbl:22 -msgid "Transition staff SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:1976 -+msgid "Add SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1509 ++msgid "Relabel on next reboot." msgstr "" -#: ../gui/selinux.tbl:23 -msgid "Transition sysadm SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:1992 -+msgid "Modify SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1561 ++msgid "label37" msgstr "" -#: ../gui/selinux.tbl:24 -msgid "Transition user SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:2008 -+msgid "Delete SELinux User Mapping" ++#: ../gui/system-config-selinux.glade:1598 ++msgid "Revert boolean setting to system default" msgstr "" -#: ../gui/selinux.tbl:25 -msgid "Transition xguest SELinux user to Web Browser Domain" -+#: ../gui/system-config-selinux.glade:2126 -+msgid "label39" ++#: ../gui/system-config-selinux.glade:1614 ++msgid "Toggle between Customized and All Booleans" msgstr "" -#: ../gui/selinux.tbl:26 ../gui/selinux.tbl:27 ../gui/selinux.tbl:28 -#: ../gui/selinux.tbl:29 -msgid "Allow staff Web Browsers to write to home directories" -+#: ../gui/system-config-selinux.glade:2163 -+msgid "Add User" ++#: ../gui/system-config-selinux.glade:1645 ++#: ../gui/system-config-selinux.glade:1850 ++#: ../gui/system-config-selinux.glade:2037 ++#: ../gui/system-config-selinux.glade:2224 ++#: ../gui/system-config-selinux.glade:2467 ++#: ../gui/system-config-selinux.glade:2692 ++#: ../gui/system-config-selinux.glade:2867 ++msgid "Filter" msgstr "" -#: ../gui/selinux.tbl:30 -msgid "Disable SELinux protection for amanda" -+#: ../gui/system-config-selinux.glade:2179 -+msgid "Modify User" ++#: ../gui/system-config-selinux.glade:1734 ++msgid "label50" msgstr "" -#: ../gui/selinux.tbl:31 -msgid "Disable SELinux protection for amavis" -+#: ../gui/system-config-selinux.glade:2195 -+msgid "Delete User" ++#: ../gui/system-config-selinux.glade:1771 ++msgid "Add File Context" msgstr "" -#: ../gui/selinux.tbl:32 -msgid "Disable SELinux protection for apmd daemon" -+#: ../gui/system-config-selinux.glade:2313 -+msgid "label41" ++#: ../gui/system-config-selinux.glade:1787 ++msgid "Modify File Context" msgstr "" -#: ../gui/selinux.tbl:33 -msgid "Disable SELinux protection for arpwatch daemon" -+#: ../gui/system-config-selinux.glade:2350 -+msgid "Add Network Port" ++#: ../gui/system-config-selinux.glade:1803 ++msgid "Delete File Context" msgstr "" -#: ../gui/selinux.tbl:34 -msgid "Disable SELinux protection for auditd daemon" -+#: ../gui/system-config-selinux.glade:2366 -+msgid "Edit Network Port" ++#: ../gui/system-config-selinux.glade:1819 ++msgid "Toggle between all and customized file context" msgstr "" -#: ../gui/selinux.tbl:35 -msgid "Disable SELinux protection for automount daemon" -+#: ../gui/system-config-selinux.glade:2382 -+msgid "Delete Network Port" ++#: ../gui/system-config-selinux.glade:1939 ++msgid "label38" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:1976 ++msgid "Add SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:1992 ++msgid "Modify SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2008 ++msgid "Delete SELinux User Mapping" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2126 ++msgid "label39" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2163 ++msgid "Add User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2179 ++msgid "Modify User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2195 ++msgid "Delete User" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2313 ++msgid "label41" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2350 ++msgid "Add Network Port" ++msgstr "" ++ ++#: ../gui/system-config-selinux.glade:2366 ++msgid "Edit Network Port" msgstr "" -#: ../gui/selinux.tbl:36 -msgid "Disable SELinux protection for avahi" ++#: ../gui/system-config-selinux.glade:2382 ++msgid "Delete Network Port" + msgstr "" + +-#: ../gui/selinux.tbl:37 +-msgid "Disable SELinux protection for bluetooth daemon" +#: ../gui/system-config-selinux.glade:2418 +#: ../gui/system-config-selinux.glade:2436 +msgid "Toggle between Customized and All Ports" msgstr "" --#: ../gui/selinux.tbl:37 --msgid "Disable SELinux protection for bluetooth daemon" +-#: ../gui/selinux.tbl:38 +-msgid "Disable SELinux protection for canna daemon" +#: ../gui/system-config-selinux.glade:2556 +msgid "label42" msgstr "" --#: ../gui/selinux.tbl:38 --msgid "Disable SELinux protection for canna daemon" +-#: ../gui/selinux.tbl:39 +-msgid "Disable SELinux protection for cardmgr daemon" +#: ../gui/system-config-selinux.glade:2593 +msgid "Generate new policy module" msgstr "" --#: ../gui/selinux.tbl:39 --msgid "Disable SELinux protection for cardmgr daemon" +-#: ../gui/selinux.tbl:40 +-msgid "Disable SELinux protection for Cluster Server" +#: ../gui/system-config-selinux.glade:2609 +msgid "Load policy module" msgstr "" --#: ../gui/selinux.tbl:40 --msgid "Disable SELinux protection for Cluster Server" +-#: ../gui/selinux.tbl:41 +#: ../gui/system-config-selinux.glade:2625 +msgid "Remove loadable policy module" - msgstr "" - --#: ../gui/selinux.tbl:41 ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2661 msgid "" -"Allow cdrecord to read various content. nfs, samba, removable devices, user " -"temp and untrusted content files" +"Enable/Disable additional audit rules, that are normally not reported in the " +"log files." - msgstr "" - --#: ../gui/selinux.tbl:42 --msgid "Disable SELinux protection for ciped daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2781 +msgid "label44" - msgstr "" - --#: ../gui/selinux.tbl:43 --msgid "Disable SELinux protection for clamd daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2818 +msgid "Change process mode to permissive." msgstr "" --#: ../gui/selinux.tbl:44 --msgid "Disable SELinux protection for clamscan" +-#: ../gui/selinux.tbl:42 +-msgid "Disable SELinux protection for ciped daemon" +#: ../gui/system-config-selinux.glade:2836 +msgid "Change process mode to enforcing" - msgstr "" - --#: ../gui/selinux.tbl:45 --msgid "Disable SELinux protection for clvmd" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2928 +msgid "Process Domain" - msgstr "" - --#: ../gui/selinux.tbl:46 --msgid "Disable SELinux protection for comsat daemon" ++msgstr "" ++ +#: ../gui/system-config-selinux.glade:2956 +msgid "label59" - msgstr "" - --#: ../gui/selinux.tbl:47 ../gui/selinux.tbl:48 ../gui/selinux.tbl:49 --#: ../gui/selinux.tbl:50 ../gui/selinux.tbl:51 --msgid "Disable SELinux protection for courier daemon" ++msgstr "" ++ +#: ../gui/usersPage.py:138 +#, python-format +msgid "SELinux user '%s' is required" msgstr "" +-#: ../gui/selinux.tbl:43 +-msgid "Disable SELinux protection for clamd daemon" ++#: ../sepolicy/sepolicy.py:202 ++msgid "Generate SELinux man pages" + msgstr "" + +-#: ../gui/selinux.tbl:44 +-msgid "Disable SELinux protection for clamscan" ++#: ../sepolicy/sepolicy.py:205 ++msgid "path in which the generated SELinux man pages will be stored" + msgstr "" + +-#: ../gui/selinux.tbl:45 +-msgid "Disable SELinux protection for clvmd" ++#: ../sepolicy/sepolicy.py:207 ++msgid "name of the OS for man pages" + msgstr "" + +-#: ../gui/selinux.tbl:46 +-msgid "Disable SELinux protection for comsat daemon" ++#: ../sepolicy/sepolicy.py:209 ++msgid "Generate HTML man pages structure for selected SELinux man page" + msgstr "" + +-#: ../gui/selinux.tbl:47 ../gui/selinux.tbl:48 ../gui/selinux.tbl:49 +-#: ../gui/selinux.tbl:50 ../gui/selinux.tbl:51 +-msgid "Disable SELinux protection for courier daemon" ++#: ../sepolicy/sepolicy.py:213 ++msgid "All domains" + msgstr "" + -#: ../gui/selinux.tbl:52 -msgid "Disable SELinux protection for cpucontrol daemon" -+#: ../sepolicy/sepolicy.py:106 -+msgid "Generate SELinux man pages" ++#: ../sepolicy/sepolicy.py:216 ++msgid "Domain name(s) of man pages to be created" msgstr "" -#: ../gui/selinux.tbl:53 -msgid "Disable SELinux protection for cpuspeed daemon" -+#: ../sepolicy/sepolicy.py:110 -+msgid "path in which the generated SELinux man pages will be stored" ++#: ../sepolicy/sepolicy.py:221 ++msgid "Query SELinux policy network information" msgstr "" -#: ../gui/selinux.tbl:54 -msgid "Cron" -+#: ../sepolicy/sepolicy.py:114 -+msgid "All domains" ++#: ../sepolicy/sepolicy.py:226 ++msgid "list all SELinux port types" msgstr "" -#: ../gui/selinux.tbl:54 -msgid "Disable SELinux protection for crond daemon" -+#: ../sepolicy/sepolicy.py:116 -+msgid "Domain name(s) of man pages to be created" ++#: ../sepolicy/sepolicy.py:229 ++msgid "show SELinux type related to the port" msgstr "" -#: ../gui/selinux.tbl:55 ../gui/selinux.tbl:56 ../gui/selinux.tbl:57 -#: ../gui/selinux.tbl:91 -msgid "Printing" -+#: ../sepolicy/sepolicy.py:164 -+msgid "Query SELinux policy network information" ++#: ../sepolicy/sepolicy.py:232 ++msgid "Show ports defined for this SELinux type" msgstr "" -#: ../gui/selinux.tbl:55 -msgid "Disable SELinux protection for cupsd back end server" -+#: ../sepolicy/sepolicy.py:169 -+msgid "list all SELinux port types" ++#: ../sepolicy/sepolicy.py:235 ++msgid "show ports to which this domain can bind and/or connect" msgstr "" -#: ../gui/selinux.tbl:56 -msgid "Disable SELinux protection for cupsd daemon" -+#: ../sepolicy/sepolicy.py:172 -+msgid "show SELinux type related to the port" ++#: ../sepolicy/sepolicy.py:250 ++msgid "query SELinux policy to see if domains can communicate with each other" msgstr "" -#: ../gui/selinux.tbl:57 -msgid "Disable SELinux protection for cupsd_lpd" -+#: ../sepolicy/sepolicy.py:175 -+msgid "Show ports defined for this SELinux type" ++#: ../sepolicy/sepolicy.py:253 ++msgid "Source Domain" msgstr "" -#: ../gui/selinux.tbl:58 -msgid "CVS" -+#: ../sepolicy/sepolicy.py:178 -+msgid "show ports to which this domain can bind and/or connect" ++#: ../sepolicy/sepolicy.py:256 ++msgid "Target Domain" msgstr "" -#: ../gui/selinux.tbl:58 -msgid "Disable SELinux protection for cvs daemon" -+#: ../sepolicy/sepolicy.py:192 -+msgid "query SELinux policy to see if domains can communicate with each other" ++#: ../sepolicy/sepolicy.py:276 ++msgid "query SELinux Policy to see description of booleans" msgstr "" -#: ../gui/selinux.tbl:59 -msgid "Disable SELinux protection for cyrus daemon" -+#: ../sepolicy/sepolicy.py:195 -+msgid "Source Domain" ++#: ../sepolicy/sepolicy.py:280 ++msgid "get all booleans descriptions" msgstr "" -#: ../gui/selinux.tbl:60 -msgid "Disable SELinux protection for dbskkd daemon" -+#: ../sepolicy/sepolicy.py:198 -+msgid "Target Domain" ++#: ../sepolicy/sepolicy.py:282 ++msgid "boolean to get description" msgstr "" -#: ../gui/selinux.tbl:61 -msgid "Disable SELinux protection for dbusd daemon" -+#: ../sepolicy/sepolicy.py:215 -+msgid "query SELinux Policy to see description of booleans" - msgstr "" - --#: ../gui/selinux.tbl:62 --msgid "Disable SELinux protection for dccd" -+#: ../sepolicy/sepolicy.py:219 -+msgid "get all booleans desctiption" - msgstr "" - --#: ../gui/selinux.tbl:63 --msgid "Disable SELinux protection for dccifd" -+#: ../sepolicy/sepolicy.py:221 -+msgid "boolean to get description" - msgstr "" - --#: ../gui/selinux.tbl:64 --msgid "Disable SELinux protection for dccm" -+#: ../sepolicy/sepolicy.py:231 ++#: ../sepolicy/sepolicy.py:301 +msgid "" +"query SELinux Policy to see how a source process domain can transition to " +"the target process domain" msgstr "" +-#: ../gui/selinux.tbl:62 +-msgid "Disable SELinux protection for dccd" ++#: ../sepolicy/sepolicy.py:304 ++msgid "source process domain" + msgstr "" + +-#: ../gui/selinux.tbl:63 +-msgid "Disable SELinux protection for dccifd" ++#: ../sepolicy/sepolicy.py:307 ++msgid "target process domain" + msgstr "" + +-#: ../gui/selinux.tbl:64 +-msgid "Disable SELinux protection for dccm" ++#: ../sepolicy/sepolicy.py:327 ++msgid "Command required for this type of policy" + msgstr "" + -#: ../gui/selinux.tbl:65 -msgid "Disable SELinux protection for ddt daemon" -+#: ../sepolicy/sepolicy.py:234 -+msgid "source process domain" ++#: ../sepolicy/sepolicy.py:347 ++msgid "List SELinux Policy interfaces" msgstr "" -#: ../gui/selinux.tbl:66 -msgid "Disable SELinux protection for devfsd daemon" -+#: ../sepolicy/sepolicy.py:237 -+msgid "target process domain" ++#: ../sepolicy/sepolicy.py:362 ++msgid "Generate SELinux Policy module template" msgstr "" -#: ../gui/selinux.tbl:67 -msgid "Disable SELinux protection for dhcpc daemon" -+#: ../sepolicy/sepolicy.py:259 -+msgid "Generate SELinux Policy module template" ++#: ../sepolicy/sepolicy.py:365 ++msgid "Enter domain type which you will be extending" msgstr "" -#: ../gui/selinux.tbl:68 -msgid "Disable SELinux protection for dhcpd daemon" -+#: ../sepolicy/sepolicy.py:265 -+msgid "name of policy to generate" ++#: ../sepolicy/sepolicy.py:368 ++msgid "Enter SELinux user(s) which will transition to this domain" msgstr "" -#: ../gui/selinux.tbl:69 -msgid "Disable SELinux protection for dictd daemon" -+#: ../sepolicy/sepolicy.py:267 -+msgid "executable to confine" ++#: ../sepolicy/sepolicy.py:371 ++msgid "Enter domain(s) that this confined admin will administrate" msgstr "" -#: ../gui/selinux.tbl:70 -msgid "Allow sysadm_t to directly start daemons" -+#: ../sepolicy/sepolicy.py:269 -+msgid "run policy generation test suite" ++#: ../sepolicy/sepolicy.py:374 ++msgid "name of policy to generate" msgstr "" -#: ../gui/selinux.tbl:71 -msgid "Disable SELinux protection for Evolution" -+#: ../sepolicy/sepolicy.py:274 -+msgid "commands" ++#: ../sepolicy/sepolicy.py:378 ++msgid "path in which the generated policy files will be stored" msgstr "" -#: ../gui/selinux.tbl:72 -msgid "Games" -+#: ../sepolicy/sepolicy/generate.py:185 -+msgid "Internet Services Daemon" ++#: ../sepolicy/sepolicy.py:380 ++msgid "executable to confine" msgstr "" -#: ../gui/selinux.tbl:72 -msgid "Disable SELinux protection for games" -+#: ../sepolicy/sepolicy/generate.py:198 -+msgid "Valid Types:\n" ++#: ../sepolicy/sepolicy.py:384 ../sepolicy/sepolicy.py:387 ++#: ../sepolicy/sepolicy.py:390 ../sepolicy/sepolicy.py:393 ++#: ../sepolicy/sepolicy.py:396 ../sepolicy/sepolicy.py:399 ++#: ../sepolicy/sepolicy.py:402 ../sepolicy/sepolicy.py:405 ++#: ../sepolicy/sepolicy.py:408 ../sepolicy/sepolicy.py:411 ++#: ../sepolicy/sepolicy.py:414 ../sepolicy/sepolicy.py:417 ++#, python-format ++msgid "Generate Policy for %s" msgstr "" -#: ../gui/selinux.tbl:73 -msgid "Disable SELinux protection for the web browsers" -+#: ../sepolicy/sepolicy/generate.py:232 -+#, python-format -+msgid "Ports must be numbers or ranges of numbers from 1 to %d " ++#: ../sepolicy/sepolicy.py:422 ++msgid "commands" msgstr "" -#: ../gui/selinux.tbl:74 -msgid "Disable SELinux protection for Thunderbird" -+#: ../sepolicy/sepolicy/generate.py:359 -+msgid "You must enter a name for your confined process/user" ++#: ../sepolicy/sepolicy.py:425 ++msgid "Alternate SELinux policy, defaults to /sys/fs/selinux/policy" msgstr "" -#: ../gui/selinux.tbl:75 -msgid "Disable SELinux protection for distccd daemon" -+#: ../sepolicy/sepolicy/generate.py:361 -+msgid "" -+"Name must be alpha numberic with no spaces. Consider using option \"-n " -+"MODULENAME\"" ++#: ../sepolicy/sepolicy/__init__.py:48 ++msgid "No SELinux Policy installed" msgstr "" -#: ../gui/selinux.tbl:76 -msgid "Disable SELinux protection for dmesg daemon" -+#: ../sepolicy/sepolicy/generate.py:449 -+msgid "User Role types can not be assigned executables." ++#: ../sepolicy/sepolicy/__init__.py:54 ++#, python-format ++msgid "Failed to read %s policy file" msgstr "" -#: ../gui/selinux.tbl:77 -msgid "Disable SELinux protection for dnsmasq daemon" -+#: ../sepolicy/sepolicy/generate.py:455 -+msgid "Only Daemon apps can use an init script.." ++#: ../sepolicy/sepolicy/__init__.py:127 ++msgid "unknown" msgstr "" -#: ../gui/selinux.tbl:78 -msgid "Disable SELinux protection for dovecot daemon" -+#: ../sepolicy/sepolicy/generate.py:473 -+msgid "use_resolve must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:173 ++msgid "Internet Services Daemon" msgstr "" -#: ../gui/selinux.tbl:79 -msgid "Disable SELinux protection for entropyd daemon" -+#: ../sepolicy/sepolicy/generate.py:479 -+msgid "use_syslog must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:177 ++msgid "Existing Domain Type" msgstr "" -#: ../gui/selinux.tbl:80 -msgid "Disable SELinux protection for fetchmail" -+#: ../sepolicy/sepolicy/generate.py:485 -+msgid "use_kerberos must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:178 ++msgid "Minimal Terminal Login User Role" msgstr "" -#: ../gui/selinux.tbl:81 -msgid "Disable SELinux protection for fingerd daemon" -+#: ../sepolicy/sepolicy/generate.py:491 -+msgid "manage_krb5_rcache must be a boolean value " ++#: ../sepolicy/sepolicy/generate.py:179 ++msgid "Minimal X Windows Login User Role" msgstr "" -#: ../gui/selinux.tbl:82 -msgid "Disable SELinux protection for freshclam daemon" -+#: ../sepolicy/sepolicy/generate.py:521 -+msgid "USER Types automatically get a tmp type" ++#: ../sepolicy/sepolicy/generate.py:180 ++msgid "Desktop Login User Role" msgstr "" -#: ../gui/selinux.tbl:83 -msgid "Disable SELinux protection for fsdaemon daemon" -+#: ../sepolicy/sepolicy/generate.py:1039 -+msgid "You must enter the executable path for your confined process" ++#: ../sepolicy/sepolicy/generate.py:181 ++msgid "Administrator Login User Role" msgstr "" -#: ../gui/selinux.tbl:84 -msgid "Disable SELinux protection for gpm daemon" -+#: ../sepolicy/sepolicy/generate.py:1272 -+msgid "Type Enforcement file" ++#: ../sepolicy/sepolicy/generate.py:182 ++msgid "Confined Root Administrator Role" msgstr "" -#: ../gui/selinux.tbl:85 ../gui/selinux.tbl:125 -msgid "NFS" -+#: ../sepolicy/sepolicy/generate.py:1273 -+msgid "Interface file" ++#: ../sepolicy/sepolicy/generate.py:187 ++msgid "Valid Types:\n" msgstr "" -#: ../gui/selinux.tbl:85 -msgid "Disable SELinux protection for gss daemon" -+#: ../sepolicy/sepolicy/generate.py:1274 -+msgid "File Contexts file" ++#: ../sepolicy/sepolicy/generate.py:221 ++#, python-format ++msgid "Ports must be numbers or ranges of numbers from 1 to %d " msgstr "" -#: ../gui/selinux.tbl:86 -msgid "Disable SELinux protection for Hal daemon" -+#: ../sepolicy/sepolicy/generate.py:1275 -+msgid "Spec file" ++#: ../sepolicy/sepolicy/generate.py:231 ++msgid "You must enter a valid policy type" msgstr "" -#: ../gui/selinux.tbl:87 -msgid "Compatibility" -+#: ../sepolicy/sepolicy/generate.py:1276 -+msgid "Setup Script" ++#: ../sepolicy/sepolicy/generate.py:234 ++#, python-format ++msgid "You must enter a name for your policy module for your %s." msgstr "" -#: ../gui/selinux.tbl:87 -+#: booleans.py:1 ++#: ../sepolicy/sepolicy/generate.py:355 msgid "" -"Do not audit things that we know to be broken but which are not security " -"risks" -+"Allow ABRT to modify public files used for public file transfer services." ++"Name must be alpha numberic with no spaces. Consider using option \"-n " ++"MODULENAME\"" ++msgstr "" ++ ++#: ../sepolicy/sepolicy/generate.py:447 ++msgid "User Role types can not be assigned executables." msgstr "" -#: ../gui/selinux.tbl:88 -msgid "Disable SELinux protection for hostname daemon" ++#: ../sepolicy/sepolicy/generate.py:453 ++msgid "Only Daemon apps can use an init script.." + msgstr "" + +-#: ../gui/selinux.tbl:89 +-msgid "Disable SELinux protection for hotplug daemon" ++#: ../sepolicy/sepolicy/generate.py:471 ++msgid "use_resolve must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:90 +-msgid "Disable SELinux protection for howl daemon" ++#: ../sepolicy/sepolicy/generate.py:477 ++msgid "use_syslog must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:91 +-msgid "Disable SELinux protection for cups hplip daemon" ++#: ../sepolicy/sepolicy/generate.py:483 ++msgid "use_kerberos must be a boolean value " ++msgstr "" ++ ++#: ../sepolicy/sepolicy/generate.py:489 ++msgid "manage_krb5_rcache must be a boolean value " + msgstr "" + +-#: ../gui/selinux.tbl:92 +-msgid "Disable SELinux protection for httpd rotatelogs" ++#: ../sepolicy/sepolicy/generate.py:519 ++msgid "USER Types automatically get a tmp type" + msgstr "" + +-#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233 +-msgid "HTTPD Service" ++#: ../sepolicy/sepolicy/generate.py:857 ++#, python-format ++msgid "%s policy modules require existing domains" + msgstr "" + +-#: ../gui/selinux.tbl:93 +-msgid "Disable SELinux protection for http suexec" ++#: ../sepolicy/sepolicy/generate.py:1059 ++msgid "You must enter the executable path for your confined process" + msgstr "" + +-#: ../gui/selinux.tbl:94 +-msgid "Disable SELinux protection for hwclock daemon" ++#: ../sepolicy/sepolicy/generate.py:1321 ++msgid "Type Enforcement file" + msgstr "" + +-#: ../gui/selinux.tbl:95 +-msgid "Disable SELinux protection for i18n daemon" ++#: ../sepolicy/sepolicy/generate.py:1322 ++msgid "Interface file" + msgstr "" + +-#: ../gui/selinux.tbl:96 +-msgid "Disable SELinux protection for imazesrv daemon" ++#: ../sepolicy/sepolicy/generate.py:1323 ++msgid "File Contexts file" + msgstr "" + +-#: ../gui/selinux.tbl:97 +-msgid "Disable SELinux protection for inetd child daemons" ++#: ../sepolicy/sepolicy/generate.py:1324 ++msgid "Spec file" + msgstr "" + +-#: ../gui/selinux.tbl:98 +-msgid "Disable SELinux protection for inetd daemon" ++#: ../sepolicy/sepolicy/generate.py:1325 ++msgid "Setup Script" + msgstr "" + +-#: ../gui/selinux.tbl:99 +-msgid "Disable SELinux protection for innd daemon" ++#: booleans.py:1 ++msgid "" ++"Allow ABRT to modify public files used for public file transfer services." + msgstr "" + +-#: ../gui/selinux.tbl:100 +-msgid "Disable SELinux protection for iptables daemon" +#: booleans.py:2 +msgid "" +"Allow ABRT to run in abrt_handle_event_t domain to handle ABRT event scripts" msgstr "" --#: ../gui/selinux.tbl:89 --msgid "Disable SELinux protection for hotplug daemon" +-#: ../gui/selinux.tbl:101 +-msgid "Disable SELinux protection for ircd daemon" +#: booleans.py:3 +msgid "Allow amavis to use JIT compiler" msgstr "" --#: ../gui/selinux.tbl:90 --msgid "Disable SELinux protection for howl daemon" +-#: ../gui/selinux.tbl:102 +-msgid "Disable SELinux protection for irqbalance daemon" +#: booleans.py:4 +msgid "Allow antivirus programs to read non security files on a system" msgstr "" --#: ../gui/selinux.tbl:91 --msgid "Disable SELinux protection for cups hplip daemon" +-#: ../gui/selinux.tbl:103 +-msgid "Disable SELinux protection for iscsi daemon" +#: booleans.py:5 ++msgid "Allow auditadm to exec content" + msgstr "" + +-#: ../gui/selinux.tbl:104 +-msgid "Disable SELinux protection for jabberd daemon" ++#: booleans.py:6 +msgid "" +"Allow users to resolve user passwd entries directly from ldap rather then " +"using a sssd server" msgstr "" --#: ../gui/selinux.tbl:92 --msgid "Disable SELinux protection for httpd rotatelogs" -+#: booleans.py:6 +-#: ../gui/selinux.tbl:105 ../gui/selinux.tbl:107 +-msgid "Kerberos" ++#: booleans.py:7 +msgid "Allow users to login using a radius server" msgstr "" --#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233 --msgid "HTTPD Service" -+#: booleans.py:7 +-#: ../gui/selinux.tbl:105 +-msgid "Disable SELinux protection for kadmind daemon" ++#: booleans.py:8 +msgid "Allow users to login using a yubikey server" msgstr "" --#: ../gui/selinux.tbl:93 --msgid "Disable SELinux protection for http suexec" -+#: booleans.py:8 +-#: ../gui/selinux.tbl:106 +-msgid "Disable SELinux protection for klogd daemon" ++#: booleans.py:9 ++msgid "Allow awstats to purge Apache logs" + msgstr "" + +-#: ../gui/selinux.tbl:107 +-msgid "Disable SELinux protection for krb5kdc daemon" ++#: booleans.py:10 +msgid "" +"Allow cdrecord to read various content. nfs, samba, removable devices, user " +"temp and untrusted content files" msgstr "" --#: ../gui/selinux.tbl:94 --msgid "Disable SELinux protection for hwclock daemon" -+#: booleans.py:9 -+msgid "Allow clamd to use JIT compiler" - msgstr "" - --#: ../gui/selinux.tbl:95 --msgid "Disable SELinux protection for i18n daemon" -+#: booleans.py:10 -+msgid "Allow clamscan to non security files on a system" - msgstr "" - --#: ../gui/selinux.tbl:96 --msgid "Disable SELinux protection for imazesrv daemon" -+#: booleans.py:11 -+msgid "Allow clamscan to read user content" - msgstr "" - --#: ../gui/selinux.tbl:97 --msgid "Disable SELinux protection for inetd child daemons" -+#: booleans.py:12 -+msgid "" -+"Allow Cobbler to modify public files used for public file transfer services." - msgstr "" - --#: ../gui/selinux.tbl:98 --msgid "Disable SELinux protection for inetd daemon" -+#: booleans.py:13 -+msgid "Allow Cobbler to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:99 --msgid "Disable SELinux protection for innd daemon" -+#: booleans.py:14 -+msgid "Allow Cobbler to access cifs file systems." - msgstr "" - --#: ../gui/selinux.tbl:100 --msgid "Disable SELinux protection for iptables daemon" -+#: booleans.py:15 -+msgid "Allow Cobbler to access nfs file systems." - msgstr "" - --#: ../gui/selinux.tbl:101 --msgid "Disable SELinux protection for ircd daemon" -+#: booleans.py:16 -+msgid "Allow collectd to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:102 --msgid "Disable SELinux protection for irqbalance daemon" -+#: booleans.py:17 -+msgid "Allow codnor domain to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:103 --msgid "Disable SELinux protection for iscsi daemon" -+#: booleans.py:18 -+msgid "" -+"Allow system cron jobs to relabel filesystem for restoring file contexts." - msgstr "" - --#: ../gui/selinux.tbl:104 --msgid "Disable SELinux protection for jabberd daemon" -+#: booleans.py:19 -+msgid "Allow cvs daemon to read shadow" - msgstr "" - --#: ../gui/selinux.tbl:105 ../gui/selinux.tbl:107 --msgid "Kerberos" -+#: booleans.py:20 -+msgid "Allow all daemons to write corefiles to /" - msgstr "" - --#: ../gui/selinux.tbl:105 --msgid "Disable SELinux protection for kadmind daemon" -+#: booleans.py:21 -+msgid "Allow all daemons to use tcp wrappers." - msgstr "" - --#: ../gui/selinux.tbl:106 --msgid "Disable SELinux protection for klogd daemon" -+#: booleans.py:22 -+msgid "Allow all daemons the ability to read/write terminals" - msgstr "" - --#: ../gui/selinux.tbl:107 --msgid "Disable SELinux protection for krb5kdc daemon" -+#: booleans.py:23 -+msgid "Allow dbadm to manage files in users home directories" - msgstr "" - -#: ../gui/selinux.tbl:108 -msgid "Disable SELinux protection for ktalk daemons" -+#: booleans.py:24 -+msgid "Allow dbadm to read files in users home directories" ++#: booleans.py:11 ++msgid "Allow clamd to use JIT compiler" msgstr "" -#: ../gui/selinux.tbl:109 -msgid "Disable SELinux protection for kudzu daemon" ++#: booleans.py:12 ++msgid "Allow clamscan to non security files on a system" + msgstr "" + +-#: ../gui/selinux.tbl:110 +-msgid "Disable SELinux protection for locate daemon" ++#: booleans.py:13 ++msgid "Allow clamscan to read user content" + msgstr "" + +-#: ../gui/selinux.tbl:111 +-msgid "Disable SELinux protection for lpd daemon" ++#: booleans.py:14 ++msgid "" ++"Allow Cobbler to modify public files used for public file transfer services." + msgstr "" + +-#: ../gui/selinux.tbl:112 +-msgid "Disable SELinux protection for lrrd daemon" ++#: booleans.py:15 ++msgid "Allow Cobbler to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:113 +-msgid "Disable SELinux protection for lvm daemon" ++#: booleans.py:16 ++msgid "Allow Cobbler to access cifs file systems." + msgstr "" + +-#: ../gui/selinux.tbl:114 +-msgid "Disable SELinux protection for mailman" ++#: booleans.py:17 ++msgid "Allow Cobbler to access nfs file systems." + msgstr "" + +-#: ../gui/selinux.tbl:115 +-msgid "Allow evolution and thunderbird to read user files" ++#: booleans.py:18 ++msgid "Allow collectd to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:116 +-msgid "Disable SELinux protection for mdadm daemon" ++#: booleans.py:19 ++msgid "Allow codnor domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:117 +-msgid "Disable SELinux protection for monopd daemon" ++#: booleans.py:20 ++msgid "" ++"Allow system cron jobs to relabel filesystem for restoring file contexts." + msgstr "" + +-#: ../gui/selinux.tbl:118 +-msgid "Allow the mozilla browser to read user files" ++#: booleans.py:21 ++msgid "Allow cvs daemon to read shadow" + msgstr "" + +-#: ../gui/selinux.tbl:119 +-msgid "Disable SELinux protection for mrtg daemon" ++#: booleans.py:22 ++msgid "Allow all daemons to write corefiles to /" + msgstr "" + +-#: ../gui/selinux.tbl:120 +-msgid "Disable SELinux protection for mysqld daemon" ++#: booleans.py:23 ++msgid "Allow all daemons to use tcp wrappers." + msgstr "" + +-#: ../gui/selinux.tbl:121 +-msgid "Disable SELinux protection for nagios daemon" ++#: booleans.py:24 ++msgid "Allow all daemons the ability to read/write terminals" + msgstr "" + +-#: ../gui/selinux.tbl:122 ../gui/selinux.tbl:128 +-msgid "Name Service" +#: booleans.py:25 ++msgid "Allow dan to manage user files" + msgstr "" + +-#: ../gui/selinux.tbl:122 +-msgid "Disable SELinux protection for named daemon" ++#: booleans.py:26 ++msgid "Allow dan to read user files" + msgstr "" + +-#: ../gui/selinux.tbl:123 +-msgid "Disable SELinux protection for nessusd daemon" ++#: booleans.py:27 ++msgid "Allow dbadm to manage files in users home directories" + msgstr "" + +-#: ../gui/selinux.tbl:124 +-msgid "Disable SELinux protection for NetworkManager" ++#: booleans.py:28 ++msgid "Allow dbadm to read files in users home directories" + msgstr "" + +-#: ../gui/selinux.tbl:125 +-msgid "Disable SELinux protection for nfsd daemon" ++#: booleans.py:29 +msgid "" +"Deny user domains applications to map a memory region as both executable and " +"writable, this is dangerous and the executable should be reported in bugzilla" msgstr "" --#: ../gui/selinux.tbl:110 --msgid "Disable SELinux protection for locate daemon" -+#: booleans.py:26 +-#: ../gui/selinux.tbl:126 ../gui/selinux.tbl:163 ../gui/selinux.tbl:176 +-#: ../gui/selinux.tbl:221 +-msgid "Samba" ++#: booleans.py:30 +msgid "Allow sysadm to debug or ptrace all processes." msgstr "" --#: ../gui/selinux.tbl:111 --msgid "Disable SELinux protection for lpd daemon" -+#: booleans.py:27 +-#: ../gui/selinux.tbl:126 +-msgid "Disable SELinux protection for nmbd daemon" ++#: booleans.py:31 +msgid "Allow dhcpc client applications to execute iptables commands" msgstr "" --#: ../gui/selinux.tbl:112 --msgid "Disable SELinux protection for lrrd daemon" -+#: booleans.py:28 +-#: ../gui/selinux.tbl:127 +-msgid "Disable SELinux protection for nrpe daemon" ++#: booleans.py:32 +msgid "Allow DHCP daemon to use LDAP backends" msgstr "" --#: ../gui/selinux.tbl:113 --msgid "Disable SELinux protection for lvm daemon" -+#: booleans.py:29 +-#: ../gui/selinux.tbl:128 +-msgid "Disable SELinux protection for nscd daemon" ++#: booleans.py:33 +msgid "Allow all domains to use other domains file descriptors" msgstr "" --#: ../gui/selinux.tbl:114 --msgid "Disable SELinux protection for mailman" -+#: booleans.py:30 +-#: ../gui/selinux.tbl:129 +-msgid "Disable SELinux protection for nsd daemon" ++#: booleans.py:34 +msgid "Allow all domains to have the kernel load modules" msgstr "" --#: ../gui/selinux.tbl:115 --msgid "Allow evolution and thunderbird to read user files" -+#: booleans.py:31 +-#: ../gui/selinux.tbl:130 +-msgid "Disable SELinux protection for ntpd daemon" ++#: booleans.py:35 +msgid "Allow the use of the audio devices as the source for the entropy feeds" msgstr "" --#: ../gui/selinux.tbl:116 --msgid "Disable SELinux protection for mdadm daemon" -+#: booleans.py:32 +-#: ../gui/selinux.tbl:131 +-msgid "Disable SELinux protection for oddjob" ++#: booleans.py:36 +msgid "Allow exim to connect to databases (postgres, mysql)" msgstr "" --#: ../gui/selinux.tbl:117 --msgid "Disable SELinux protection for monopd daemon" -+#: booleans.py:33 +-#: ../gui/selinux.tbl:132 +-msgid "Disable SELinux protection for oddjob_mkhomedir" ++#: booleans.py:37 +msgid "Allow exim to create, read, write, and delete unprivileged user files." msgstr "" --#: ../gui/selinux.tbl:118 --msgid "Allow the mozilla browser to read user files" -+#: booleans.py:34 +-#: ../gui/selinux.tbl:133 +-msgid "Disable SELinux protection for openvpn daemon" ++#: booleans.py:38 +msgid "Allow exim to read unprivileged user files." msgstr "" --#: ../gui/selinux.tbl:119 --msgid "Disable SELinux protection for mrtg daemon" -+#: booleans.py:35 +-#: ../gui/selinux.tbl:134 +-msgid "Disable SELinux protection for pam daemon" ++#: booleans.py:39 +msgid "Enable extra rules in the cron domain to support fcron." msgstr "" --#: ../gui/selinux.tbl:120 --msgid "Disable SELinux protection for mysqld daemon" -+#: booleans.py:36 +-#: ../gui/selinux.tbl:135 +-msgid "Disable SELinux protection for pegasus" ++#: booleans.py:40 +msgid "Allow fenced domain to connect to the network using TCP." msgstr "" --#: ../gui/selinux.tbl:121 --msgid "Disable SELinux protection for nagios daemon" -+#: booleans.py:37 +-#: ../gui/selinux.tbl:136 +-msgid "Disable SELinux protection for perdition daemon" ++#: booleans.py:41 +msgid "Allow fenced domain to execute ssh." msgstr "" --#: ../gui/selinux.tbl:122 ../gui/selinux.tbl:128 --msgid "Name Service" -+#: booleans.py:38 +-#: ../gui/selinux.tbl:137 +-msgid "Disable SELinux protection for portmap daemon" ++#: booleans.py:42 ++msgid "Allow all domains to execute in fips_mode" + msgstr "" + +-#: ../gui/selinux.tbl:138 +-msgid "Disable SELinux protection for portslave daemon" ++#: booleans.py:43 +msgid "Allow ftp to read and write files in the user home directories" msgstr "" --#: ../gui/selinux.tbl:122 --msgid "Disable SELinux protection for named daemon" -+#: booleans.py:39 +-#: ../gui/selinux.tbl:139 +-msgid "Disable SELinux protection for postfix" ++#: booleans.py:44 +msgid "" +"Allow ftp servers to upload files, used for public file transfer services. " +"Directories must be labeled public_content_rw_t." msgstr "" --#: ../gui/selinux.tbl:123 --msgid "Disable SELinux protection for nessusd daemon" -+#: booleans.py:40 +-#: ../gui/selinux.tbl:140 +-msgid "Disable SELinux protection for postgresql daemon" ++#: booleans.py:45 +msgid "Allow ftp servers to connect to all ports > 1023" msgstr "" --#: ../gui/selinux.tbl:124 --msgid "Disable SELinux protection for NetworkManager" -+#: booleans.py:41 +-#: ../gui/selinux.tbl:141 +-msgid "pppd" ++#: booleans.py:46 +msgid "Allow ftp servers to connect to mysql database ports" msgstr "" --#: ../gui/selinux.tbl:125 --msgid "Disable SELinux protection for nfsd daemon" -+#: booleans.py:42 +-#: ../gui/selinux.tbl:141 +-msgid "Allow pppd to be run for a regular user" ++#: booleans.py:47 +msgid "" +"Allow ftp servers to login to local users and read/write all files on the " +"system, governed by DAC." msgstr "" --#: ../gui/selinux.tbl:126 ../gui/selinux.tbl:163 ../gui/selinux.tbl:176 --#: ../gui/selinux.tbl:221 --msgid "Samba" -+#: booleans.py:43 +-#: ../gui/selinux.tbl:142 +-msgid "Disable SELinux protection for pptp" ++#: booleans.py:48 +msgid "Allow ftp servers to use cifs used for public file transfer services." msgstr "" --#: ../gui/selinux.tbl:126 --msgid "Disable SELinux protection for nmbd daemon" -+#: booleans.py:44 +-#: ../gui/selinux.tbl:143 +-msgid "Disable SELinux protection for prelink daemon" ++#: booleans.py:49 +msgid "Allow ftp servers to use nfs used for public file transfer services." msgstr "" --#: ../gui/selinux.tbl:127 --msgid "Disable SELinux protection for nrpe daemon" -+#: booleans.py:45 +-#: ../gui/selinux.tbl:144 +-msgid "Disable SELinux protection for privoxy daemon" ++#: booleans.py:50 +msgid "Allow ftp servers to use bind to all unreserved ports for passive mode" msgstr "" --#: ../gui/selinux.tbl:128 --msgid "Disable SELinux protection for nscd daemon" -+#: booleans.py:46 +-#: ../gui/selinux.tbl:145 +-msgid "Disable SELinux protection for ptal daemon" ++#: booleans.py:51 +msgid "Determine whether Git CGI can search home directories." msgstr "" --#: ../gui/selinux.tbl:129 --msgid "Disable SELinux protection for nsd daemon" -+#: booleans.py:47 +-#: ../gui/selinux.tbl:146 +-msgid "Disable SELinux protection for pxe daemon" ++#: booleans.py:52 +msgid "Determine whether Git CGI can access cifs file systems." msgstr "" --#: ../gui/selinux.tbl:130 --msgid "Disable SELinux protection for ntpd daemon" -+#: booleans.py:48 +-#: ../gui/selinux.tbl:147 +-msgid "Disable SELinux protection for pyzord" ++#: booleans.py:53 +msgid "Determine whether Git CGI can access nfs file systems." msgstr "" --#: ../gui/selinux.tbl:131 --msgid "Disable SELinux protection for oddjob" -+#: booleans.py:49 +-#: ../gui/selinux.tbl:148 +-msgid "Disable SELinux protection for quota daemon" ++#: booleans.py:54 +msgid "" +"Determine whether Git session daemon can bind TCP sockets to all unreserved " +"ports." msgstr "" --#: ../gui/selinux.tbl:132 --msgid "Disable SELinux protection for oddjob_mkhomedir" -+#: booleans.py:50 +-#: ../gui/selinux.tbl:149 +-msgid "Disable SELinux protection for radiusd daemon" ++#: booleans.py:55 +msgid "" +"Determine whether calling user domains can execute Git daemon in the " +"git_session_t domain." msgstr "" --#: ../gui/selinux.tbl:133 --msgid "Disable SELinux protection for openvpn daemon" -+#: booleans.py:51 +-#: ../gui/selinux.tbl:150 +-msgid "Disable SELinux protection for radvd daemon" ++#: booleans.py:56 +msgid "Determine whether Git system daemon can search home directories." msgstr "" --#: ../gui/selinux.tbl:134 --msgid "Disable SELinux protection for pam daemon" -+#: booleans.py:52 +-#: ../gui/selinux.tbl:151 +-msgid "Disable SELinux protection for rdisc" ++#: booleans.py:57 +msgid "Determine whether Git system daemon can access cifs file systems." msgstr "" --#: ../gui/selinux.tbl:135 --msgid "Disable SELinux protection for pegasus" -+#: booleans.py:53 +-#: ../gui/selinux.tbl:152 +-msgid "Disable SELinux protection for readahead" ++#: booleans.py:58 +msgid "Determine whether Git system daemon can access nfs file systems." msgstr "" --#: ../gui/selinux.tbl:136 --msgid "Disable SELinux protection for perdition daemon" -+#: booleans.py:54 +-#: ../gui/selinux.tbl:153 +-msgid "Allow programs to read files in non-standard locations (default_t)" ++#: booleans.py:59 +msgid "Allow gitisis daemon to send mail" msgstr "" --#: ../gui/selinux.tbl:137 --msgid "Disable SELinux protection for portmap daemon" -+#: booleans.py:55 +-#: ../gui/selinux.tbl:154 +-msgid "Disable SELinux protection for restorecond" ++#: booleans.py:60 +msgid "Enable reading of urandom for all domains." msgstr "" --#: ../gui/selinux.tbl:138 --msgid "Disable SELinux protection for portslave daemon" -+#: booleans.py:56 +-#: ../gui/selinux.tbl:155 +-msgid "Disable SELinux protection for rhgb daemon" ++#: booleans.py:61 +msgid "" +"Allow usage of the gpg-agent --write-env-file option. This also allows gpg-" +"agent to manage user files." msgstr "" --#: ../gui/selinux.tbl:139 --msgid "Disable SELinux protection for postfix" -+#: booleans.py:57 +-#: ../gui/selinux.tbl:156 +-msgid "Disable SELinux protection for ricci" ++#: booleans.py:62 +msgid "" +"Allow gpg web domain to modify public files used for public file transfer " +"services." msgstr "" --#: ../gui/selinux.tbl:140 --msgid "Disable SELinux protection for postgresql daemon" -+#: booleans.py:58 +-#: ../gui/selinux.tbl:157 +-msgid "Disable SELinux protection for ricci_modclusterd" ++#: booleans.py:63 +msgid "Allow gssd to read temp directory. For access to kerberos tgt." msgstr "" --#: ../gui/selinux.tbl:141 --msgid "pppd" -+#: booleans.py:59 +-#: ../gui/selinux.tbl:158 +-msgid "Disable SELinux protection for rlogind daemon" ++#: booleans.py:64 ++msgid "Allow guest to exec content" + msgstr "" + +-#: ../gui/selinux.tbl:159 +-msgid "Disable SELinux protection for rpcd daemon" ++#: booleans.py:65 +msgid "" +"Allow Apache to modify public files used for public file transfer services. " +"Directories/Files must be labeled public_content_rw_t." msgstr "" --#: ../gui/selinux.tbl:141 --msgid "Allow pppd to be run for a regular user" -+#: booleans.py:60 +-#: ../gui/selinux.tbl:160 +-msgid "Disable SELinux protection for rshd" ++#: booleans.py:66 +msgid "Allow httpd to use built in scripting (usually php)" msgstr "" --#: ../gui/selinux.tbl:142 --msgid "Disable SELinux protection for pptp" -+#: booleans.py:61 +-#: ../gui/selinux.tbl:161 +-msgid "rsync" ++#: booleans.py:67 +msgid "Allow http daemon to check spam" msgstr "" --#: ../gui/selinux.tbl:143 --msgid "Disable SELinux protection for prelink daemon" -+#: booleans.py:62 +-#: ../gui/selinux.tbl:161 +-msgid "Disable SELinux protection for rsync daemon" ++#: booleans.py:68 +msgid "" +"Allow httpd to act as a FTP client connecting to the ftp port and ephemeral " +"ports" msgstr "" --#: ../gui/selinux.tbl:144 --msgid "Disable SELinux protection for privoxy daemon" -+#: booleans.py:63 -+msgid "Allow httpd to connect to the ldap port" - msgstr "" - --#: ../gui/selinux.tbl:145 --msgid "Disable SELinux protection for ptal daemon" -+#: booleans.py:64 -+msgid "Allow http daemon to connect to zabbix" - msgstr "" - --#: ../gui/selinux.tbl:146 --msgid "Disable SELinux protection for pxe daemon" -+#: booleans.py:65 -+msgid "Allow HTTPD scripts and modules to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:147 --msgid "Disable SELinux protection for pyzord" -+#: booleans.py:66 -+msgid "Allow HTTPD scripts and modules to connect to cobbler over the network." - msgstr "" - --#: ../gui/selinux.tbl:148 --msgid "Disable SELinux protection for quota daemon" -+#: booleans.py:67 -+msgid "" -+"Allow HTTPD scripts and modules to connect to databases over the network." - msgstr "" - --#: ../gui/selinux.tbl:149 --msgid "Disable SELinux protection for radiusd daemon" -+#: booleans.py:68 -+msgid "Allow httpd to connect to memcache server" - msgstr "" - --#: ../gui/selinux.tbl:150 --msgid "Disable SELinux protection for radvd daemon" -+#: booleans.py:69 -+msgid "Allow httpd to act as a relay" - msgstr "" - --#: ../gui/selinux.tbl:151 --msgid "Disable SELinux protection for rdisc" -+#: booleans.py:70 -+msgid "Allow http daemon to send mail" - msgstr "" - --#: ../gui/selinux.tbl:152 --msgid "Disable SELinux protection for readahead" -+#: booleans.py:71 -+msgid "Allow Apache to communicate with avahi service via dbus" - msgstr "" - --#: ../gui/selinux.tbl:153 --msgid "Allow programs to read files in non-standard locations (default_t)" -+#: booleans.py:72 -+msgid "Allow httpd cgi support" - msgstr "" - --#: ../gui/selinux.tbl:154 --msgid "Disable SELinux protection for restorecond" -+#: booleans.py:73 -+msgid "Allow httpd to act as a FTP server by listening on the ftp port." - msgstr "" - --#: ../gui/selinux.tbl:155 --msgid "Disable SELinux protection for rhgb daemon" -+#: booleans.py:74 -+msgid "Allow httpd to read home directories" - msgstr "" - --#: ../gui/selinux.tbl:156 --msgid "Disable SELinux protection for ricci" -+#: booleans.py:75 -+msgid "Allow httpd scripts and modules execmem/execstack" - msgstr "" - --#: ../gui/selinux.tbl:157 --msgid "Disable SELinux protection for ricci_modclusterd" -+#: booleans.py:76 -+msgid "Allow HTTPD to connect to port 80 for graceful shutdown" - msgstr "" - --#: ../gui/selinux.tbl:158 --msgid "Disable SELinux protection for rlogind daemon" -+#: booleans.py:77 -+msgid "Allow httpd processes to manage IPA content" - msgstr "" - --#: ../gui/selinux.tbl:159 --msgid "Disable SELinux protection for rpcd daemon" -+#: booleans.py:78 -+msgid "Allow Apache to use mod_auth_ntlm_winbind" - msgstr "" - --#: ../gui/selinux.tbl:160 --msgid "Disable SELinux protection for rshd" -+#: booleans.py:79 -+msgid "Allow Apache to use mod_auth_pam" - msgstr "" - --#: ../gui/selinux.tbl:161 --msgid "rsync" -+#: booleans.py:80 -+msgid "Allow httpd to read user content" - msgstr "" - --#: ../gui/selinux.tbl:161 --msgid "Disable SELinux protection for rsync daemon" -+#: booleans.py:81 -+msgid "Allow Apache to run in stickshift mode, not transition to passenger" - msgstr "" - -#: ../gui/selinux.tbl:162 -msgid "Allow ssh to run from inetd instead of as a daemon" -+#: booleans.py:82 -+msgid "Allow httpd daemon to change its resource limits" ++#: booleans.py:69 ++msgid "Allow httpd to connect to the ldap port" msgstr "" -#: ../gui/selinux.tbl:163 -msgid "Allow Samba to share nfs directories" -+#: booleans.py:83 -+msgid "" -+"Allow HTTPD to run SSI executables in the same domain as system CGI scripts." ++#: booleans.py:70 ++msgid "Allow http daemon to connect to zabbix" msgstr "" -#: ../gui/selinux.tbl:164 ../gui/selinux.tbl:166 -msgid "SASL authentication server" ++#: booleans.py:71 ++msgid "Allow HTTPD scripts and modules to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:164 +-msgid "Allow sasl authentication server to read /etc/shadow" ++#: booleans.py:72 ++msgid "Allow HTTPD scripts and modules to connect to cobbler over the network." + msgstr "" + +-#: ../gui/selinux.tbl:165 ++#: booleans.py:73 + msgid "" +-"Allow X-Windows server to map a memory region as both executable and writable" ++"Allow HTTPD scripts and modules to connect to databases over the network." ++msgstr "" ++ ++#: booleans.py:74 ++msgid "Allow httpd to connect to memcache server" + msgstr "" + +-#: ../gui/selinux.tbl:166 +-msgid "Disable SELinux protection for saslauthd daemon" ++#: booleans.py:75 ++msgid "Allow httpd to act as a relay" + msgstr "" + +-#: ../gui/selinux.tbl:167 +-msgid "Disable SELinux protection for scannerdaemon daemon" ++#: booleans.py:76 ++msgid "Allow http daemon to send mail" + msgstr "" + +-#: ../gui/selinux.tbl:168 +-msgid "Do not allow transition to sysadm_t, sudo and su effected" ++#: booleans.py:77 ++msgid "Allow Apache to communicate with avahi service via dbus" + msgstr "" + +-#: ../gui/selinux.tbl:169 +-msgid "Do not allow any processes to load kernel modules" ++#: booleans.py:78 ++msgid "Allow httpd cgi support" + msgstr "" + +-#: ../gui/selinux.tbl:170 +-msgid "Do not allow any processes to modify kernel SELinux policy" ++#: booleans.py:79 ++msgid "Allow httpd to act as a FTP server by listening on the ftp port." + msgstr "" + +-#: ../gui/selinux.tbl:171 +-msgid "Disable SELinux protection for sendmail daemon" ++#: booleans.py:80 ++msgid "Allow httpd to read home directories" + msgstr "" + +-#: ../gui/selinux.tbl:172 +-msgid "Disable SELinux protection for setrans" ++#: booleans.py:81 ++msgid "Allow httpd scripts and modules execmem/execstack" + msgstr "" + +-#: ../gui/selinux.tbl:173 +-msgid "Disable SELinux protection for setroubleshoot daemon" ++#: booleans.py:82 ++msgid "Allow HTTPD to connect to port 80 for graceful shutdown" + msgstr "" + +-#: ../gui/selinux.tbl:174 +-msgid "Disable SELinux protection for slapd daemon" ++#: booleans.py:83 ++msgid "Allow httpd processes to manage IPA content" + msgstr "" + +-#: ../gui/selinux.tbl:175 +-msgid "Disable SELinux protection for slrnpull daemon" +#: booleans.py:84 ++msgid "Allow Apache to use mod_auth_ntlm_winbind" + msgstr "" + +-#: ../gui/selinux.tbl:176 +-msgid "Disable SELinux protection for smbd daemon" ++#: booleans.py:85 ++msgid "Allow Apache to use mod_auth_pam" + msgstr "" + +-#: ../gui/selinux.tbl:177 +-msgid "Disable SELinux protection for snmpd daemon" ++#: booleans.py:86 ++msgid "Allow httpd to read user content" + msgstr "" + +-#: ../gui/selinux.tbl:178 +-msgid "Disable SELinux protection for snort daemon" ++#: booleans.py:87 ++msgid "Allow Apache to run in stickshift mode, not transition to passenger" + msgstr "" + +-#: ../gui/selinux.tbl:179 +-msgid "Disable SELinux protection for soundd daemon" ++#: booleans.py:88 ++msgid "Allow httpd daemon to change its resource limits" + msgstr "" + +-#: ../gui/selinux.tbl:180 +-msgid "Disable SELinux protection for sound daemon" ++#: booleans.py:89 ++msgid "" ++"Allow HTTPD to run SSI executables in the same domain as system CGI scripts." + msgstr "" + +-#: ../gui/selinux.tbl:181 ../gui/selinux.tbl:182 ../gui/selinux.tbl:183 +-msgid "Spam Protection" ++#: booleans.py:90 +msgid "" +"Allow apache scripts to write to public content, directories/files must be " +"labeled public_rw_content_t." msgstr "" --#: ../gui/selinux.tbl:164 --msgid "Allow sasl authentication server to read /etc/shadow" -+#: booleans.py:85 +-#: ../gui/selinux.tbl:181 +-msgid "Disable SELinux protection for spamd daemon" ++#: booleans.py:91 +msgid "Allow Apache to execute tmp content." msgstr "" --#: ../gui/selinux.tbl:165 -+#: booleans.py:86 - msgid "" --"Allow X-Windows server to map a memory region as both executable and writable" +-#: ../gui/selinux.tbl:182 +-msgid "Allow spamd to access home directories" ++#: booleans.py:92 ++msgid "" +"Unify HTTPD to communicate with the terminal. Needed for entering the " +"passphrase for certificates at the terminal." msgstr "" --#: ../gui/selinux.tbl:166 --msgid "Disable SELinux protection for saslauthd daemon" -+#: booleans.py:87 +-#: ../gui/selinux.tbl:183 +-msgid "Allow Spam Assassin daemon network access" ++#: booleans.py:93 +msgid "Unify HTTPD handling of all content files." msgstr "" --#: ../gui/selinux.tbl:167 --msgid "Disable SELinux protection for scannerdaemon daemon" -+#: booleans.py:88 +-#: ../gui/selinux.tbl:184 +-msgid "Disable SELinux protection for speedmgmt daemon" ++#: booleans.py:94 +msgid "Allow httpd to access cifs file systems" msgstr "" --#: ../gui/selinux.tbl:168 --msgid "Do not allow transition to sysadm_t, sudo and su effected" -+#: booleans.py:89 +-#: ../gui/selinux.tbl:185 ../gui/selinux.tbl:186 +-msgid "Squid" ++#: booleans.py:95 +msgid "Allow httpd to access FUSE file systems" msgstr "" --#: ../gui/selinux.tbl:169 --msgid "Do not allow any processes to load kernel modules" -+#: booleans.py:90 +-#: ../gui/selinux.tbl:185 +-msgid "Allow squid daemon to connect to the network" ++#: booleans.py:96 +msgid "Allow httpd to run gpg" msgstr "" --#: ../gui/selinux.tbl:170 --msgid "Do not allow any processes to modify kernel SELinux policy" -+#: booleans.py:91 +-#: ../gui/selinux.tbl:186 +-msgid "Disable SELinux protection for squid daemon" ++#: booleans.py:97 +msgid "Allow httpd to access nfs file systems" msgstr "" --#: ../gui/selinux.tbl:171 --msgid "Disable SELinux protection for sendmail daemon" -+#: booleans.py:92 +-#: ../gui/selinux.tbl:187 +-msgid "Disable SELinux protection for ssh daemon" ++#: booleans.py:98 +msgid "Allow httpd to communicate with oddjob to start up a service" msgstr "" --#: ../gui/selinux.tbl:172 --msgid "Disable SELinux protection for setrans" -+#: booleans.py:93 +-#: ../gui/selinux.tbl:188 +-msgid "Allow ssh logins as sysadm_r:sysadm_t" ++#: booleans.py:99 +msgid "Allow httpd to access openstack ports" - msgstr "" - --#: ../gui/selinux.tbl:173 --msgid "Disable SELinux protection for setroubleshoot daemon" -+#: booleans.py:94 ++msgstr "" ++ ++#: booleans.py:100 ++msgid "Allow Apache to query NS records" ++msgstr "" ++ ++#: booleans.py:101 +msgid "Allow icecast to connect to all ports, not just sound ports." msgstr "" --#: ../gui/selinux.tbl:174 --msgid "Disable SELinux protection for slapd daemon" -+#: booleans.py:95 -+msgid "" +-#: ../gui/selinux.tbl:189 ++#: booleans.py:102 + msgid "" +-"Allow staff_r users to search the sysadm home dir and read files (such as ~/." +-"bashrc)" +"Allow the Irssi IRC Client to connect to any port, and to bind to any " +"unreserved port." msgstr "" --#: ../gui/selinux.tbl:175 --msgid "Disable SELinux protection for slrnpull daemon" -+#: booleans.py:96 -+msgid "Allow java executable stack" - msgstr "" - --#: ../gui/selinux.tbl:176 --msgid "Disable SELinux protection for smbd daemon" -+#: booleans.py:97 +-#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191 +-msgid "Universal SSL tunnel" ++#: booleans.py:103 +msgid "Allow confined applications to run with kerberos." msgstr "" --#: ../gui/selinux.tbl:177 --msgid "Disable SELinux protection for snmpd daemon" -+#: booleans.py:98 +-#: ../gui/selinux.tbl:190 +-msgid "Disable SELinux protection for stunnel daemon" ++#: booleans.py:104 +msgid "Allow syslogd daemon to send mail" msgstr "" --#: ../gui/selinux.tbl:178 --msgid "Disable SELinux protection for snort daemon" -+#: booleans.py:99 +-#: ../gui/selinux.tbl:191 +-msgid "Allow stunnel daemon to run as standalone, outside of xinetd" ++#: booleans.py:105 +msgid "Allow syslogd the ability to read/write terminals" msgstr "" --#: ../gui/selinux.tbl:179 --msgid "Disable SELinux protection for soundd daemon" -+#: booleans.py:100 +-#: ../gui/selinux.tbl:192 +-msgid "Disable SELinux protection for swat daemon" ++#: booleans.py:106 +msgid "Allow logging in and using the system from /dev/console." msgstr "" --#: ../gui/selinux.tbl:180 --msgid "Disable SELinux protection for sound daemon" -+#: booleans.py:101 +-#: ../gui/selinux.tbl:193 +-msgid "Disable SELinux protection for sxid daemon" ++#: booleans.py:107 +msgid "" +"Control the ability to mmap a low area of the address space, as configured " +"by /proc/sys/kernel/mmap_min_addr." msgstr "" --#: ../gui/selinux.tbl:181 ../gui/selinux.tbl:182 ../gui/selinux.tbl:183 --msgid "Spam Protection" -+#: booleans.py:102 -+msgid "Allow mock to read files in home directories." - msgstr "" - --#: ../gui/selinux.tbl:181 --msgid "Disable SELinux protection for spamd daemon" -+#: booleans.py:103 -+msgid "Allow the mount command to mount any directory or file." - msgstr "" - --#: ../gui/selinux.tbl:182 --msgid "Allow spamd to access home directories" -+#: booleans.py:104 -+msgid "Allow mozilla plugin domain to connect to the network using TCP." - msgstr "" - --#: ../gui/selinux.tbl:183 --msgid "Allow Spam Assassin daemon network access" -+#: booleans.py:105 -+msgid "" -+"Allow mozilla_plugins to create random content in the users home directory" -+msgstr "" -+ -+#: booleans.py:106 -+msgid "Allow confined web browsers to read home directory content" - msgstr "" - --#: ../gui/selinux.tbl:184 --msgid "Disable SELinux protection for speedmgmt daemon" -+#: booleans.py:107 -+msgid "Allow mplayer executable stack" - msgstr "" - --#: ../gui/selinux.tbl:185 ../gui/selinux.tbl:186 --msgid "Squid" -+#: booleans.py:108 -+msgid "Allow mysqld to connect to all ports" - msgstr "" - --#: ../gui/selinux.tbl:185 --msgid "Allow squid daemon to connect to the network" -+#: booleans.py:109 -+msgid "Allow BIND to bind apache port." - msgstr "" - --#: ../gui/selinux.tbl:186 --msgid "Disable SELinux protection for squid daemon" -+#: booleans.py:110 -+msgid "" -+"Allow BIND to write the master zone files. Generally this is used for " -+"dynamic DNS or zone transfers." - msgstr "" - --#: ../gui/selinux.tbl:187 --msgid "Disable SELinux protection for ssh daemon" -+#: booleans.py:111 -+msgid "Allow any files/directories to be exported read/only via NFS." - msgstr "" - --#: ../gui/selinux.tbl:188 --msgid "Allow ssh logins as sysadm_r:sysadm_t" -+#: booleans.py:112 -+msgid "Allow any files/directories to be exported read/write via NFS." - msgstr "" - --#: ../gui/selinux.tbl:189 -+#: booleans.py:113 - msgid "" --"Allow staff_r users to search the sysadm home dir and read files (such as ~/." --"bashrc)" -+"Allow nfs servers to modify public files used for public file transfer " -+"services. Files/Directories must be labeled public_content_rw_t." - msgstr "" - --#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191 --msgid "Universal SSL tunnel" -+#: booleans.py:114 -+msgid "Allow system to run with NIS" - msgstr "" - --#: ../gui/selinux.tbl:190 --msgid "Disable SELinux protection for stunnel daemon" -+#: booleans.py:115 -+msgid "Allow confined applications to use nscd shared memory." - msgstr "" - --#: ../gui/selinux.tbl:191 --msgid "Allow stunnel daemon to run as standalone, outside of xinetd" -+#: booleans.py:116 -+msgid "Allow nsplugin code to connect to unreserved ports" - msgstr "" - --#: ../gui/selinux.tbl:192 --msgid "Disable SELinux protection for swat daemon" -+#: booleans.py:117 -+msgid "Allow nsplugin code to execmem/execstack" - msgstr "" - --#: ../gui/selinux.tbl:193 --msgid "Disable SELinux protection for sxid daemon" -+#: booleans.py:118 -+msgid "Allow openvpn to read home directories" - msgstr "" - -#: ../gui/selinux.tbl:194 -msgid "Disable SELinux protection for syslogd daemon" -+#: booleans.py:119 -+msgid "Allow piranha-lvs domain to connect to the network using TCP." ++#: booleans.py:108 ++msgid "Allow mock to read files in home directories." msgstr "" -#: ../gui/selinux.tbl:195 -msgid "Disable SELinux protection for system cron jobs" -+#: booleans.py:120 -+msgid "Allow polipo to connect to all ports > 1023" ++#: booleans.py:109 ++msgid "Allow the mount command to mount any directory or file." msgstr "" -#: ../gui/selinux.tbl:196 -msgid "Disable SELinux protection for tcp daemon" ++#: booleans.py:110 ++msgid "Allow mozilla plugin domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:197 +-msgid "Disable SELinux protection for telnet daemon" ++#: booleans.py:111 ++msgid "" ++"Allow mozilla_plugins to create random content in the users home directory" + msgstr "" + +-#: ../gui/selinux.tbl:198 +-msgid "Disable SELinux protection for tftpd daemon" ++#: booleans.py:112 ++msgid "Allow confined web browsers to read home directory content" + msgstr "" + +-#: ../gui/selinux.tbl:199 +-msgid "Disable SELinux protection for transproxy daemon" ++#: booleans.py:113 ++msgid "Allow mplayer executable stack" + msgstr "" + +-#: ../gui/selinux.tbl:200 +-msgid "Disable SELinux protection for udev daemon" ++#: booleans.py:114 ++msgid "Allow mysqld to connect to all ports" + msgstr "" + +-#: ../gui/selinux.tbl:201 +-msgid "Disable SELinux protection for uml daemon" ++#: booleans.py:115 ++msgid "Allow BIND to bind apache port." + msgstr "" + +-#: ../gui/selinux.tbl:202 ++#: booleans.py:116 + msgid "" +-"Allow xinetd to run unconfined, including any services it starts that do not " +-"have a domain transition explicitly defined" ++"Allow BIND to write the master zone files. Generally this is used for " ++"dynamic DNS or zone transfers." ++msgstr "" ++ ++#: booleans.py:117 ++msgid "Allow any files/directories to be exported read/only via NFS." ++msgstr "" ++ ++#: booleans.py:118 ++msgid "Allow any files/directories to be exported read/write via NFS." + msgstr "" + +-#: ../gui/selinux.tbl:203 ++#: booleans.py:119 + msgid "" +-"Allow rc scripts to run unconfined, including any daemon started by an rc " +-"script that does not have a domain transition explicitly defined" ++"Allow nfs servers to modify public files used for public file transfer " ++"services. Files/Directories must be labeled public_content_rw_t." ++msgstr "" ++ ++#: booleans.py:120 ++msgid "Allow system to run with NIS" ++msgstr "" ++ +#: booleans.py:121 ++msgid "Allow confined applications to use nscd shared memory." ++msgstr "" ++ ++#: booleans.py:122 ++msgid "Allow openshift to lockdown app" + msgstr "" + +-#: ../gui/selinux.tbl:204 +-msgid "Allow rpm to run unconfined" ++#: booleans.py:123 ++msgid "Allow openvpn to read home directories" + msgstr "" + +-#: ../gui/selinux.tbl:205 +-msgid "Allow privileged utilities like hotplug and insmod to run unconfined" ++#: booleans.py:124 ++msgid "Allow piranha-lvs domain to connect to the network using TCP." + msgstr "" + +-#: ../gui/selinux.tbl:206 +-msgid "Disable SELinux protection for updfstab daemon" ++#: booleans.py:125 ++msgid "Allow polipo to connect to all ports > 1023" + msgstr "" + +-#: ../gui/selinux.tbl:207 +-msgid "Disable SELinux protection for uptimed daemon" ++#: booleans.py:126 +msgid "" +"Determine whether Polipo session daemon can bind tcp sockets to all " +"unreserved ports." msgstr "" --#: ../gui/selinux.tbl:197 --msgid "Disable SELinux protection for telnet daemon" -+#: booleans.py:122 -+msgid "" -+"Determine whether calling user domains can execute Polipo daemon in the " -+"polipo_session_t domain." - msgstr "" - --#: ../gui/selinux.tbl:198 --msgid "Disable SELinux protection for tftpd daemon" -+#: booleans.py:123 -+msgid "Determine whether polipo can access cifs file systems." - msgstr "" - --#: ../gui/selinux.tbl:199 --msgid "Disable SELinux protection for transproxy daemon" -+#: booleans.py:124 -+msgid "Determine whether Polipo can access nfs file systems." - msgstr "" - --#: ../gui/selinux.tbl:200 --msgid "Disable SELinux protection for udev daemon" -+#: booleans.py:125 -+msgid "Enable polyinstantiated directory support." - msgstr "" - --#: ../gui/selinux.tbl:201 --msgid "Disable SELinux protection for uml daemon" -+#: booleans.py:126 -+msgid "Allow the portage domains to use NFS mounts (regular nfs_t)" - msgstr "" - --#: ../gui/selinux.tbl:202 --msgid "" --"Allow xinetd to run unconfined, including any services it starts that do not " --"have a domain transition explicitly defined" -+#: booleans.py:127 -+msgid "Allow postfix_local domain full write access to mail_spool directories" - msgstr "" - --#: ../gui/selinux.tbl:203 --msgid "" --"Allow rc scripts to run unconfined, including any daemon started by an rc " --"script that does not have a domain transition explicitly defined" -+#: booleans.py:128 -+msgid "Allow postgresql to use ssh and rsync for point-in-time recovery" - msgstr "" - --#: ../gui/selinux.tbl:204 --msgid "Allow rpm to run unconfined" -+#: booleans.py:129 -+msgid "Allow transmit client label to foreign database" - msgstr "" - --#: ../gui/selinux.tbl:205 --msgid "Allow privileged utilities like hotplug and insmod to run unconfined" -+#: booleans.py:130 -+msgid "Allow database admins to execute DML statement" - msgstr "" - --#: ../gui/selinux.tbl:206 --msgid "Disable SELinux protection for updfstab daemon" -+#: booleans.py:131 -+msgid "Allow unprivileged users to execute DDL statement" - msgstr "" - --#: ../gui/selinux.tbl:207 --msgid "Disable SELinux protection for uptimed daemon" -+#: booleans.py:132 -+msgid "Allow pppd to load kernel modules for certain modems" -+msgstr "" -+ -+#: booleans.py:133 -+msgid "Allow pppd to be run for a regular user" - msgstr "" - -#: ../gui/selinux.tbl:208 -+#: booleans.py:134 ++#: booleans.py:127 msgid "" -"Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only " -"staff_r can do so" -+"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports." ++"Determine whether calling user domains can execute Polipo daemon in the " ++"polipo_session_t domain." ++msgstr "" ++ ++#: booleans.py:128 ++msgid "Determine whether polipo can access cifs file systems." ++msgstr "" ++ ++#: booleans.py:129 ++msgid "Determine whether Polipo can access nfs file systems." ++msgstr "" ++ ++#: booleans.py:130 ++msgid "Enable polyinstantiated directory support." msgstr "" -#: ../gui/selinux.tbl:209 -msgid "Allow users to execute the mount command" -+#: booleans.py:135 -+msgid "Allow Puppet client to manage all file types." ++#: booleans.py:131 ++msgid "Allow postfix_local domain full write access to mail_spool directories" msgstr "" -#: ../gui/selinux.tbl:210 -msgid "Allow regular users direct mouse access (only allow the X server)" -+#: booleans.py:136 -+msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database" ++#: booleans.py:132 ++msgid "Allow postgresql to use ssh and rsync for point-in-time recovery" msgstr "" -#: ../gui/selinux.tbl:211 -msgid "Allow users to run the dmesg command" -+#: booleans.py:137 -+msgid "Allow qemu to connect fully to the network" ++#: booleans.py:133 ++msgid "Allow transmit client label to foreign database" msgstr "" -#: ../gui/selinux.tbl:212 -msgid "Allow users to control network interfaces (also needs USERCTL=true)" -+#: booleans.py:138 -+msgid "Allow qemu to use cifs/Samba file systems" ++#: booleans.py:134 ++msgid "Allow database admins to execute DML statement" msgstr "" -#: ../gui/selinux.tbl:213 -msgid "Allow normal user to execute ping" -+#: booleans.py:139 -+msgid "Allow qemu to use serial/parallel communication ports" ++#: booleans.py:135 ++msgid "Allow unprivileged users to execute DDL statement" msgstr "" -#: ../gui/selinux.tbl:214 -msgid "Allow user to r/w noextattrfile (FAT, CDROM, FLOPPY)" -+#: booleans.py:140 -+msgid "Allow qemu to use nfs file systems" ++#: booleans.py:136 ++msgid "Allow pppd to load kernel modules for certain modems" msgstr "" -#: ../gui/selinux.tbl:215 -msgid "Allow users to rw usb devices" -+#: booleans.py:141 -+msgid "Allow qemu to use usb devices" ++#: booleans.py:137 ++msgid "Allow pppd to be run for a regular user" msgstr "" -#: ../gui/selinux.tbl:216 -+#: booleans.py:142 -+msgid "Allow racoon to read shadow" -+msgstr "" -+ -+#: booleans.py:143 -+msgid "Allow rgmanager domain to connect to the network using TCP." -+msgstr "" -+ -+#: booleans.py:144 ++#: booleans.py:138 msgid "" -"Allow users to run TCP servers (bind to ports and accept connection from the " -"same domain and outside users) disabling this forces FTP passive mode and " -"may change other protocols" -+"Allow rsync to modify public files used for public file transfer services. " -+"Files/Directories must be labeled public_content_rw_t." ++"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports." msgstr "" -#: ../gui/selinux.tbl:217 -msgid "Allow user to stat ttyfiles" -+#: booleans.py:145 -+msgid "Allow rsync to run as a client" ++#: booleans.py:139 ++msgid "Allow Puppet client to manage all file types." msgstr "" -#: ../gui/selinux.tbl:218 -msgid "Disable SELinux protection for uucpd daemon" -+#: booleans.py:146 -+msgid "Allow rsync to export any files/directories read only." ++#: booleans.py:140 ++msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database" msgstr "" -#: ../gui/selinux.tbl:219 -msgid "Disable SELinux protection for vmware daemon" -+#: booleans.py:147 -+msgid "Allow rsync servers to share cifs files systems" ++#: booleans.py:141 ++msgid "Allow racoon to read shadow" msgstr "" -#: ../gui/selinux.tbl:220 -msgid "Disable SELinux protection for watchdog daemon" -+#: booleans.py:148 -+msgid "Allow rsync servers to share nfs files systems" ++#: booleans.py:142 ++msgid "Allow rgmanager domain to connect to the network using TCP." msgstr "" -#: ../gui/selinux.tbl:221 -msgid "Disable SELinux protection for winbind daemon" -+#: booleans.py:149 -+msgid "Allow samba to create new home directories (e.g. via PAM)" ++#: booleans.py:143 ++msgid "" ++"Allow rsync to modify public files used for public file transfer services. " ++"Files/Directories must be labeled public_content_rw_t." msgstr "" -#: ../gui/selinux.tbl:222 -msgid "Disable SELinux protection for xdm daemon" -+#: booleans.py:150 ++#: booleans.py:144 ++msgid "Allow rsync to run as a client" + msgstr "" + +-#: ../gui/selinux.tbl:223 +-msgid "Allow xdm logins as sysadm_r:sysadm_t" ++#: booleans.py:145 ++msgid "Allow rsync to export any files/directories read only." + msgstr "" + +-#: ../gui/selinux.tbl:224 +-msgid "Disable SELinux protection for xen daemon" ++#: booleans.py:146 ++msgid "Allow rsync servers to share cifs files systems" + msgstr "" + +-#: ../gui/selinux.tbl:225 +-msgid "XEN" ++#: booleans.py:147 ++msgid "Allow rsync servers to share nfs files systems" + msgstr "" + +-#: ../gui/selinux.tbl:225 +-msgid "Allow xen to read/write physical disk devices" ++#: booleans.py:148 ++msgid "Allow samba to create new home directories (e.g. via PAM)" + msgstr "" + +-#: ../gui/selinux.tbl:226 +-msgid "Disable SELinux protection for xfs daemon" ++#: booleans.py:149 +msgid "" +"Allow samba to act as the domain controller, add users, groups and change " +"passwords." msgstr "" --#: ../gui/selinux.tbl:223 --msgid "Allow xdm logins as sysadm_r:sysadm_t" -+#: booleans.py:151 -+msgid "Allow samba to share users home directories." - msgstr "" - --#: ../gui/selinux.tbl:224 --msgid "Disable SELinux protection for xen daemon" -+#: booleans.py:152 -+msgid "Allow samba to share any file/directory read only." - msgstr "" - --#: ../gui/selinux.tbl:225 --msgid "XEN" -+#: booleans.py:153 -+msgid "Allow samba to share any file/directory read/write." - msgstr "" - --#: ../gui/selinux.tbl:225 --msgid "Allow xen to read/write physical disk devices" -+#: booleans.py:154 -+msgid "Allow samba to act as a portmapper" - msgstr "" - --#: ../gui/selinux.tbl:226 --msgid "Disable SELinux protection for xfs daemon" -+#: booleans.py:155 -+msgid "Allow samba to run unconfined scripts" - msgstr "" - -#: ../gui/selinux.tbl:227 -msgid "Disable SELinux protection for xen control" -+#: booleans.py:156 -+msgid "Allow samba to export ntfs/fusefs volumes." ++#: booleans.py:150 ++msgid "Allow samba to share users home directories." msgstr "" -#: ../gui/selinux.tbl:228 -msgid "Disable SELinux protection for ypbind daemon" -+#: booleans.py:157 -+msgid "Allow samba to export NFS volumes." ++#: booleans.py:151 ++msgid "Allow samba to share any file/directory read only." msgstr "" -#: ../gui/selinux.tbl:229 -msgid "Disable SELinux protection for NIS Password Daemon" -+#: booleans.py:158 -+msgid "Allow sanlock to read/write fuse files" ++#: booleans.py:152 ++msgid "Allow samba to share any file/directory read/write." msgstr "" -#: ../gui/selinux.tbl:230 -msgid "Disable SELinux protection for ypserv daemon" -+#: booleans.py:159 -+msgid "Allow sanlock to manage nfs files" ++#: booleans.py:153 ++msgid "Allow samba to act as a portmapper" msgstr "" -#: ../gui/selinux.tbl:231 -msgid "Disable SELinux protection for NIS Transfer Daemon" -+#: booleans.py:160 -+msgid "Allow sanlock to manage cifs files" ++#: booleans.py:154 ++msgid "Allow samba to run unconfined scripts" msgstr "" -#: ../gui/selinux.tbl:232 -msgid "Allow SELinux webadm user to manage unprivileged users home directories" -+#: booleans.py:161 -+msgid "Allow sasl to read shadow" ++#: booleans.py:155 ++msgid "Allow samba to export ntfs/fusefs volumes." msgstr "" -#: ../gui/selinux.tbl:233 -msgid "Allow SELinux webadm user to read unprivileged users home directories" ++#: booleans.py:156 ++msgid "Allow samba to export NFS volumes." + msgstr "" + +-#: ../gui/semanagePage.py:126 +-#, python-format +-msgid "Are you sure you want to delete %s '%s'?" ++#: booleans.py:157 ++msgid "Allow sanlock to read/write fuse files" + msgstr "" + +-#: ../gui/semanagePage.py:126 +-#, python-format +-msgid "Delete %s" ++#: booleans.py:158 ++msgid "Allow sanlock to manage nfs files" + msgstr "" + +-#: ../gui/semanagePage.py:134 +-#, python-format +-msgid "Add %s" ++#: booleans.py:159 ++msgid "Allow sanlock to manage cifs files" + msgstr "" + +-#: ../gui/semanagePage.py:148 +-#, python-format +-msgid "Modify %s" ++#: booleans.py:160 ++msgid "Allow sasl to read shadow" + msgstr "" + +-#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 +-msgid "Permissive" ++#: booleans.py:161 ++msgid "Allow secadm to exec content" + msgstr "" + +-#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 +-msgid "Enforcing" +#: booleans.py:162 +msgid "" +"disallow programs, such as newrole, from transitioning to administrative " +"user domains." msgstr "" --#: ../gui/semanagePage.py:126 --#, python-format --msgid "Are you sure you want to delete %s '%s'?" +-#: ../gui/statusPage.py:94 +-msgid "Status" +#: booleans.py:163 +msgid "Disable kernel module loading." msgstr "" --#: ../gui/semanagePage.py:126 --#, python-format --msgid "Delete %s" +-#: ../gui/statusPage.py:133 +#: booleans.py:164 -+msgid "" + msgid "" +-"Changing the policy type will cause a relabel of the entire file system on " +-"the next boot. Relabeling takes a long time depending on the size of the " +-"file system. Do you wish to continue?" +"Boolean to determine whether the system permits loading policy, setting " +"enforcing mode, and changing boolean values. Set this to true and you have " +"to reboot to set it back." msgstr "" --#: ../gui/semanagePage.py:134 --#, python-format --msgid "Add %s" +-#: ../gui/statusPage.py:147 +#: booleans.py:165 +msgid "Allow regular users direct dri device access" - msgstr "" - --#: ../gui/semanagePage.py:148 --#, python-format --msgid "Modify %s" -+#: booleans.py:166 -+msgid "" -+"Allow unconfined executables to make their heap memory executable. Doing " -+"this is a really bad idea. Probably indicates a badly coded executable, but " -+"could indicate an attack. This executable should be reported in bugzilla" - msgstr "" - --#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819 --msgid "Permissive" -+#: booleans.py:167 -+msgid "" -+"Allow all unconfined executables to use libraries requiring text relocation " -+"that are not labeled textrel_shlib_t" - msgstr "" - --#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837 --msgid "Enforcing" -+#: booleans.py:168 -+msgid "" -+"Allow unconfined executables to make their stack executable. This should " -+"never, ever be necessary. Probably indicates a badly coded executable, but " -+"could indicate an attack. This executable should be reported in bugzilla" - msgstr "" - --#: ../gui/statusPage.py:94 --msgid "Status" -+#: booleans.py:169 -+msgid "Allow users to connect to the local mysql server" - msgstr "" - --#: ../gui/statusPage.py:133 -+#: booleans.py:170 - msgid "" --"Changing the policy type will cause a relabel of the entire file system on " --"the next boot. Relabeling takes a long time depending on the size of the " --"file system. Do you wish to continue?" -+"Allow confined users the ability to execute the ping and traceroute commands." - msgstr "" - --#: ../gui/statusPage.py:147 -+#: booleans.py:171 -+msgid "Allow users to connect to PostgreSQL" +msgstr "" + -+#: booleans.py:172 ++#: booleans.py:166 msgid "" -"Changing to SELinux disabled requires a reboot. It is not recommended. If " -"you later decide to turn SELinux back on, the system will be required to " @@ -17982,74 +18053,81 @@ index a4478db..a61c8f3 100644 -"system, you can go to permissive mode which will only log errors and not " -"enforce SELinux policy. Permissive mode does not require a reboot Do you " -"wish to continue?" -+"Allow user to r/w files on filesystems that do not have extended attributes " -+"(FAT, CDROM, FLOPPY)" ++"Allow unconfined executables to make their heap memory executable. Doing " ++"this is a really bad idea. Probably indicates a badly coded executable, but " ++"could indicate an attack. This executable should be reported in bugzilla" msgstr "" -#: ../gui/statusPage.py:152 -+#: booleans.py:173 ++#: booleans.py:167 msgid "" -"Changing to SELinux enabled will cause a relabel of the entire file system " -"on the next boot. Relabeling takes a long time depending on the size of the " -"file system. Do you wish to continue?" -+"Allow users to run TCP servers (bind to ports and accept connection from the " -+"same domain and outside users) disabling this forces FTP passive mode and " -+"may change other protocols." ++"Allow all unconfined executables to use libraries requiring text relocation " ++"that are not labeled textrel_shlib_t" msgstr "" -#: ../gui/system-config-selinux.glade:11 -msgid "system-config-selinux" -+#: booleans.py:174 -+msgid "Allow user music sharing" ++#: booleans.py:168 ++msgid "" ++"Allow unconfined executables to make their stack executable. This should " ++"never, ever be necessary. Probably indicates a badly coded executable, but " ++"could indicate an attack. This executable should be reported in bugzilla" msgstr "" -#: ../gui/system-config-selinux.glade:12 -+#: booleans.py:175 ++#: booleans.py:169 ++msgid "Allow users to connect to the local mysql server" ++msgstr "" ++ ++#: booleans.py:170 msgid "" -"Copyright (c)2006 Red Hat, Inc.\n" -"Copyright (c) 2006 Dan Walsh " -+"Allow anon internal-sftp to upload files, used for public file transfer " -+"services. Directories must be labeled public_content_rw_t." ++"Allow confined users the ability to execute the ping and traceroute commands." msgstr "" -#: ../gui/system-config-selinux.glade:22 -#: ../gui/system-config-selinux.glade:544 -msgid "Add SELinux Login Mapping" -+#: booleans.py:176 -+msgid "" -+"Allow sftp-internal to read and write files in the user home directories" ++#: booleans.py:171 ++msgid "Allow users to connect to PostgreSQL" msgstr "" -#: ../gui/system-config-selinux.glade:257 -msgid "Add SELinux Network Ports" -+#: booleans.py:177 ++#: booleans.py:172 +msgid "" -+"Allow sftp-internal to login to local users and read/write all files on the " -+"system, governed by DAC." ++"Allow user to r/w files on filesystems that do not have extended attributes " ++"(FAT, CDROM, FLOPPY)" msgstr "" -#: ../gui/system-config-selinux.glade:391 -#: ../gui/system-config-selinux.glade:678 -msgid "SELinux Type" -+#: booleans.py:178 ++#: booleans.py:173 +msgid "" -+"Allow internal-sftp to read and write files in the user ssh home directories." ++"Allow users to run TCP servers (bind to ports and accept connection from the " ++"same domain and outside users) disabling this forces FTP passive mode and " ++"may change other protocols." msgstr "" -#: ../gui/system-config-selinux.glade:622 -msgid "File Specification" -+#: booleans.py:179 -+msgid "Allow sge to connect to the network using any TCP port" ++#: booleans.py:174 ++msgid "Allow user to use ssh chroot environment." msgstr "" -#: ../gui/system-config-selinux.glade:650 -msgid "File Type" -+#: booleans.py:180 -+msgid "Allow sge to access nfs file systems." ++#: booleans.py:175 ++msgid "Allow user music sharing" msgstr "" -#: ../gui/system-config-selinux.glade:727 -+#: booleans.py:181 ++#: booleans.py:176 msgid "" -"all files\n" -"regular file\n" @@ -18059,129 +18137,151 @@ index a4478db..a61c8f3 100644 -"socket\n" -"symbolic link\n" -"named pipe\n" -+"Enable additional permissions needed to support devices on 3ware controllers." ++"Allow anon internal-sftp to upload files, used for public file transfer " ++"services. Directories must be labeled public_content_rw_t." msgstr "" -#: ../gui/system-config-selinux.glade:773 -msgid "MLS" ++#: booleans.py:177 ++msgid "" ++"Allow sftp-internal to read and write files in the user home directories" + msgstr "" + +-#: ../gui/system-config-selinux.glade:837 +-msgid "Add SELinux User" ++#: booleans.py:178 ++msgid "" ++"Allow sftp-internal to login to local users and read/write all files on the " ++"system, governed by DAC." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1079 +-msgid "SELinux Administration" ++#: booleans.py:179 ++msgid "" ++"Allow internal-sftp to read and write files in the user ssh home directories." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1122 +-msgid "Add" ++#: booleans.py:180 ++msgid "Allow sge to connect to the network using any TCP port" + msgstr "" + +-#: ../gui/system-config-selinux.glade:1144 +-msgid "_Properties" ++#: booleans.py:181 ++msgid "Allow sge to access nfs file systems." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1166 +-msgid "_Delete" +#: booleans.py:182 +msgid "" ++"Enable additional permissions needed to support devices on 3ware controllers." + msgstr "" + +-#: ../gui/system-config-selinux.glade:1256 +-msgid "Select Management Object" ++#: booleans.py:183 ++msgid "" +"Allow samba to modify public files used for public file transfer services. " +"Files/Directories must be labeled public_content_rw_t." msgstr "" --#: ../gui/system-config-selinux.glade:837 --msgid "Add SELinux User" -+#: booleans.py:183 +-#: ../gui/system-config-selinux.glade:1273 +-msgid "Select:" ++#: booleans.py:184 +msgid "Allow user spamassassin clients to use the network." msgstr "" --#: ../gui/system-config-selinux.glade:1079 --msgid "SELinux Administration" -+#: booleans.py:184 +-#: ../gui/system-config-selinux.glade:1326 +-msgid "System Default Enforcing Mode" ++#: booleans.py:185 +msgid "Allow spamd to read/write user home directories." msgstr "" --#: ../gui/system-config-selinux.glade:1122 --msgid "Add" -+#: booleans.py:185 -+msgid "" +-#: ../gui/system-config-selinux.glade:1354 ++#: booleans.py:186 + msgid "" +-"Disabled\n" +-"Permissive\n" +-"Enforcing\n" +"Allow squid to connect to all ports, not just HTTP, FTP, and Gopher ports." msgstr "" --#: ../gui/system-config-selinux.glade:1144 --msgid "_Properties" -+#: booleans.py:186 +-#: ../gui/system-config-selinux.glade:1373 +-msgid "Current Enforcing Mode" ++#: booleans.py:187 +msgid "Allow squid to run as a transparent proxy (TPROXY)" msgstr "" --#: ../gui/system-config-selinux.glade:1166 --msgid "_Delete" -+#: booleans.py:187 +-#: ../gui/system-config-selinux.glade:1418 +-msgid "System Default Policy Type: " ++#: booleans.py:188 +msgid "" +"Allow ssh with chroot env to read and write files in the user home " +"directories" msgstr "" --#: ../gui/system-config-selinux.glade:1256 --msgid "Select Management Object" -+#: booleans.py:188 -+msgid "allow host key based authentication" - msgstr "" - --#: ../gui/system-config-selinux.glade:1273 --msgid "Select:" +-#: ../gui/system-config-selinux.glade:1463 +#: booleans.py:189 -+msgid "Allow ssh logins as sysadm_r:sysadm_t" - msgstr "" - --#: ../gui/system-config-selinux.glade:1326 --msgid "System Default Enforcing Mode" ++msgid "allow host key based authentication" ++msgstr "" ++ +#: booleans.py:190 -+msgid "allow staff user to create and transition to svirt domains." - msgstr "" - --#: ../gui/system-config-selinux.glade:1354 ++msgid "Allow ssh logins as sysadm_r:sysadm_t" ++msgstr "" ++ +#: booleans.py:191 -+msgid "Allow the Telepathy connection managers to connect to any network port." ++msgid "Allow staff to exec content" +msgstr "" + +#: booleans.py:192 - msgid "" --"Disabled\n" --"Permissive\n" --"Enforcing\n" -+"Allow the Telepathy connection managers to connect to any generic TCP port." - msgstr "" - --#: ../gui/system-config-selinux.glade:1373 --msgid "Current Enforcing Mode" ++msgid "allow staff user to create and transition to svirt domains." ++msgstr "" ++ +#: booleans.py:193 -+msgid "" -+"Allow tftp to modify public files used for public file transfer services." - msgstr "" - --#: ../gui/system-config-selinux.glade:1418 --msgid "System Default Policy Type: " ++msgid "Allow sysadm to exec content" ++msgstr "" ++ +#: booleans.py:194 -+msgid "Allow tor daemon to bind tcp sockets to all unreserved ports." - msgstr "" - --#: ../gui/system-config-selinux.glade:1463 ++msgid "Allow the Telepathy connection managers to connect to any network port." ++msgstr "" ++ +#: booleans.py:195 msgid "" -"Select if you wish to relabel then entire file system on next reboot. " -"Relabeling can take a very long time, depending on the size of the system. " -"If you are changing policy types or going from disabled to enforcing, a " -"relabel is required." -+"allow unconfined users to transition to the chrome sandbox domains when " -+"running chrome-sandbox" ++"Allow the Telepathy connection managers to connect to any generic TCP port." msgstr "" -#: ../gui/system-config-selinux.glade:1509 -msgid "Relabel on next reboot." +#: booleans.py:196 -+msgid "Allow a user to login as an unconfined domain" ++msgid "" ++"Allow tftp to modify public files used for public file transfer services." msgstr "" -#: ../gui/system-config-selinux.glade:1561 -msgid "label37" +#: booleans.py:197 -+msgid "" -+"Allow unconfined users to transition to the Mozilla plugin domain when " -+"running xulrunner plugin-container." ++msgid "Allow tftp to read and write files in the user home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1598 -msgid "Revert boolean setting to system default" +#: booleans.py:198 -+msgid "Allow video playing tools to run unconfined" ++msgid "Allow tor daemon to bind tcp sockets to all unreserved ports." msgstr "" -#: ../gui/system-config-selinux.glade:1614 -msgid "Toggle between Customized and All Booleans" +#: booleans.py:199 -+msgid "Allow unprivledged user to create and transition to svirt domains." ++msgid "Allow tor to act as a relay" msgstr "" -#: ../gui/system-config-selinux.glade:1645 @@ -18193,239 +18293,290 @@ index a4478db..a61c8f3 100644 -#: ../gui/system-config-selinux.glade:2867 -msgid "Filter" +#: booleans.py:200 -+msgid "Support ecryptfs home directories" ++msgid "" ++"allow unconfined users to transition to the chrome sandbox domains when " ++"running chrome-sandbox" msgstr "" -#: ../gui/system-config-selinux.glade:1734 -msgid "label50" +#: booleans.py:201 -+msgid "Support fusefs home directories" ++msgid "Allow a user to login as an unconfined domain" msgstr "" -#: ../gui/system-config-selinux.glade:1771 -msgid "Add File Context" +#: booleans.py:202 -+msgid "Use lpd server instead of cups" ++msgid "" ++"Allow unconfined users to transition to the Mozilla plugin domain when " ++"running xulrunner plugin-container." msgstr "" -#: ../gui/system-config-selinux.glade:1787 -msgid "Modify File Context" +#: booleans.py:203 -+msgid "Support NFS home directories" ++msgid "Allow video playing tools to run unconfined" msgstr "" -#: ../gui/system-config-selinux.glade:1803 -msgid "Delete File Context" +#: booleans.py:204 -+msgid "Support SAMBA home directories" ++msgid "Allow unprivledged user to create and transition to svirt domains." msgstr "" -#: ../gui/system-config-selinux.glade:1819 -msgid "Toggle between all and customized file context" +#: booleans.py:205 -+msgid "Allow varnishd to connect to all ports, not just HTTP." ++msgid "Support ecryptfs home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1939 -msgid "label38" +#: booleans.py:206 -+msgid "Ignore vbetool mmap_zero errors." ++msgid "Support fusefs home directories" msgstr "" -#: ../gui/system-config-selinux.glade:1976 -msgid "Add SELinux User Mapping" +#: booleans.py:207 -+msgid "" -+"Allow confined virtual guests to use serial/parallel communication ports" ++msgid "Use lpd server instead of cups" msgstr "" -#: ../gui/system-config-selinux.glade:1992 -msgid "Modify SELinux User Mapping" +#: booleans.py:208 -+msgid "" -+"Allow confined virtual guests to use executable memory and executable stack" ++msgid "Support NFS home directories" msgstr "" -#: ../gui/system-config-selinux.glade:2008 -msgid "Delete SELinux User Mapping" +#: booleans.py:209 -+msgid "Allow confined virtual guests to read fuse files" ++msgid "Support SAMBA home directories" msgstr "" -#: ../gui/system-config-selinux.glade:2126 -msgid "label39" +#: booleans.py:210 -+msgid "Allow confined virtual guests to manage nfs files" ++msgid "Allow user to exec content" msgstr "" -#: ../gui/system-config-selinux.glade:2163 -msgid "Add User" +#: booleans.py:211 -+msgid "Allow confined virtual guests to manage cifs files" ++msgid "Allow varnishd to connect to all ports, not just HTTP." msgstr "" -#: ../gui/system-config-selinux.glade:2179 -msgid "Modify User" +#: booleans.py:212 -+msgid "Allow confined virtual guests to interact with the sanlock" ++msgid "Ignore vbetool mmap_zero errors." msgstr "" -#: ../gui/system-config-selinux.glade:2195 -msgid "Delete User" +#: booleans.py:213 -+msgid "Allow confined virtual guests to manage device configuration, (pci)" ++msgid "" ++"Allow confined virtual guests to use serial/parallel communication ports" msgstr "" -#: ../gui/system-config-selinux.glade:2313 -msgid "label41" +#: booleans.py:214 -+msgid "Allow confined virtual guests to use usb devices" ++msgid "" ++"Allow confined virtual guests to use executable memory and executable stack" msgstr "" -#: ../gui/system-config-selinux.glade:2350 -msgid "Add Network Port" +#: booleans.py:215 -+msgid "Allow confined virtual guests to interact with the xserver" ++msgid "Allow confined virtual guests to read fuse files" msgstr "" -#: ../gui/system-config-selinux.glade:2366 -msgid "Edit Network Port" +#: booleans.py:216 -+msgid "Allow webadm to manage files in users home directories" ++msgid "Allow confined virtual guests to manage nfs files" msgstr "" -#: ../gui/system-config-selinux.glade:2382 -msgid "Delete Network Port" +#: booleans.py:217 -+msgid "Allow webadm to read files in users home directories" ++msgid "Allow confined virtual guests to interact with rawip sockets" msgstr "" -#: ../gui/system-config-selinux.glade:2418 -#: ../gui/system-config-selinux.glade:2436 -msgid "Toggle between Customized and All Ports" +#: booleans.py:218 -+msgid "Ignore wine mmap_zero errors." ++msgid "Allow confined virtual guests to manage cifs files" msgstr "" -#: ../gui/system-config-selinux.glade:2556 -msgid "label42" +#: booleans.py:219 -+msgid "Allow the graphical login program to execute bootloader" ++msgid "Allow confined virtual guests to interact with the sanlock" msgstr "" -#: ../gui/system-config-selinux.glade:2593 -msgid "Generate new policy module" +#: booleans.py:220 -+msgid "" -+"Allow the graphical login program to login directly as sysadm_r:sysadm_t" ++msgid "Allow confined virtual guests to manage device configuration, (pci)" msgstr "" -#: ../gui/system-config-selinux.glade:2609 -msgid "Load policy module" +#: booleans.py:221 -+msgid "Allow xen to manage nfs files" ++msgid "Allow confined virtual guests to use usb devices" msgstr "" -#: ../gui/system-config-selinux.glade:2625 -msgid "Remove loadable policy module" +#: booleans.py:222 ++msgid "Allow confined virtual guests to interact with the xserver" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2661 ++#: booleans.py:223 ++msgid "Allow webadm to manage files in users home directories" ++msgstr "" ++ ++#: booleans.py:224 ++msgid "Allow webadm to read files in users home directories" ++msgstr "" ++ ++#: booleans.py:225 ++msgid "Ignore wine mmap_zero errors." ++msgstr "" ++ ++#: booleans.py:226 ++msgid "Allow the graphical login program to execute bootloader" ++msgstr "" ++ ++#: booleans.py:227 + msgid "" +-"Enable/Disable additional audit rules, that are normally not reported in the " +-"log files." ++"Allow the graphical login program to login directly as sysadm_r:sysadm_t" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2781 +-msgid "label44" ++#: booleans.py:228 ++msgid "Allow xen to manage nfs files" + msgstr "" + +-#: ../gui/system-config-selinux.glade:2818 +-msgid "Change process mode to permissive." ++#: booleans.py:229 +msgid "" +"Allow xend to run blktapctrl/tapdisk. Not required if using dedicated " +"logical volumes for disk images." msgstr "" --#: ../gui/system-config-selinux.glade:2661 -+#: booleans.py:223 -+msgid "Allow xend to run qemu-dm. Not required if using paravirt and no vfb." -+msgstr "" -+ -+#: booleans.py:224 - msgid "" --"Enable/Disable additional audit rules, that are normally not reported in the " --"log files." -+"Allow xguest users to configure Network Manager and connect to apache ports" - msgstr "" - --#: ../gui/system-config-selinux.glade:2781 --msgid "label44" -+#: booleans.py:225 -+msgid "Allow xguest users to mount removable media" - msgstr "" - --#: ../gui/system-config-selinux.glade:2818 --msgid "Change process mode to permissive." -+#: booleans.py:226 -+msgid "Allow xguest to use blue tooth devices" - msgstr "" - -#: ../gui/system-config-selinux.glade:2836 -msgid "Change process mode to enforcing" -+#: booleans.py:227 -+msgid "Allows clients to write to the X server shared memory segments." ++#: booleans.py:230 ++msgid "Allow xend to run qemu-dm. Not required if using paravirt and no vfb." msgstr "" -#: ../gui/system-config-selinux.glade:2928 -msgid "Process Domain" -+#: booleans.py:228 -+msgid "Allows XServer to execute writable memory" ++#: booleans.py:231 ++msgid "" ++"Allow xguest users to configure Network Manager and connect to apache ports" msgstr "" -#: ../gui/system-config-selinux.glade:2956 -msgid "label59" -+#: booleans.py:229 -+msgid "Support X userspace object manager" ++#: booleans.py:232 ++msgid "Allow xguest to exec content" msgstr "" -#: ../gui/usersPage.py:138 -#, python-format -msgid "SELinux user '%s' is required" -+#: booleans.py:230 ++#: booleans.py:233 ++msgid "Allow xguest users to mount removable media" ++msgstr "" ++ ++#: booleans.py:234 ++msgid "Allow xguest to use blue tooth devices" ++msgstr "" ++ ++#: booleans.py:235 ++msgid "Allows clients to write to the X server shared memory segments." ++msgstr "" ++ ++#: booleans.py:236 ++msgid "Allows XServer to execute writable memory" ++msgstr "" ++ ++#: booleans.py:237 ++msgid "Support X userspace object manager" ++msgstr "" ++ ++#: booleans.py:238 +msgid "Allow zabbix to connect to unreserved ports" +msgstr "" + -+#: booleans.py:231 ++#: booleans.py:239 +msgid "Allow zebra daemon to write it configuration files" +msgstr "" + -+#: booleans.py:232 ++#: booleans.py:240 +msgid "" +"Allow ZoneMinder to modify public files used for public file transfer " +"services." msgstr "" diff --git a/policycoreutils/po/ar.po b/policycoreutils/po/ar.po -index b908f48..e85ea9a 100644 +index b908f48..151ca6a 100644 --- a/policycoreutils/po/ar.po +++ b/policycoreutils/po/ar.po -@@ -12,8 +12,8 @@ msgid "" +@@ -1,7 +1,7 @@ + # SOME DESCRIPTIVE TITLE. + # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER + # This file is distributed under the same license as the PACKAGE package. +-# ++# + # Translators: + # Ali Al-Ammari , 2010. + # Amjad Al-Obaili , 2010. +@@ -12,28 +12,24 @@ msgid "" msgstr "" "Project-Id-Version: Policycoreutils\n" "Report-Msgid-Bugs-To: \n" -"POT-Creation-Date: 2012-05-25 07:28-0400\n" -"PO-Revision-Date: 2012-04-02 20:30+0000\n" -+"POT-Creation-Date: 2012-10-16 12:24-0400\n" -+"PO-Revision-Date: 2012-10-08 13:10+0000\n" ++"POT-Creation-Date: 2013-01-04 12:01-0500\n" ++"PO-Revision-Date: 2013-01-04 17:02+0000\n" "Last-Translator: dwalsh \n" "Language-Team: Arabic \n" - "Language: ar\n" -@@ -21,7 +21,7 @@ msgstr "" +-"Language: ar\n" + "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" - "Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " +-"Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " -"&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5\n" -+"&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" ++"Language: ar\n" ++"Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 && n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" #: ../run_init/run_init.c:67 msgid "" -@@ -33,7 +33,7 @@ msgstr "" - " عند: