trunk: update help texts.

This commit is contained in:
Chris PeBenito 2007-12-14 15:07:09 +00:00
parent f7925f25f7
commit 766617f6a9
2 changed files with 18 additions and 7 deletions

View File

@ -1,6 +1,6 @@
Reference Policy has a requirement of checkpolicy 1.28. Red Hat Reference Policy has a requirement of checkpolicy 1.33.1 and
Enterprise Linux 4 and Fedora Core 4 RPMs are available on libsepol-1.16.2. Red Hat Enterprise Linux 4 and Fedora Core 4 RPMs
the Reference Policy download page at http://serefpolicy.sf.net, are available on the CLIP download page at http://oss.tresys.com,
and can be installed thusly: and can be installed thusly:
Red Hat Enterprise Linux 4: Red Hat Enterprise Linux 4:

19
README
View File

@ -84,6 +84,7 @@ restorelabels Relabel the filesystem and report each file that is
2) Reference Policy Build Options (build.conf) 2) Reference Policy Build Options (build.conf)
TYPE String. Available options are standard, mls, and mcs. TYPE String. Available options are standard, mls, and mcs.
For a type enforcement only system, set standard.
This optionally enables multi-level security (MLS) or This optionally enables multi-level security (MLS) or
multi-category security (MCS) features. This option multi-category security (MCS) features. This option
controls enable_mls, and enable_mcs policy blocks. controls enable_mls, and enable_mcs policy blocks.
@ -109,14 +110,24 @@ DIRECT_INITRC Boolean. If set, sysadm will be allowed to directly
This option controls direct_sysadm_daemon policy This option controls direct_sysadm_daemon policy
blocks. blocks.
POLY Boolean. If set, policy for polyinstantiated
directories will be enabled. This option controls
enable_polyinstantiation policy blocks.
OUTPUT_POLICY Integer. Set the version of the policy created when OUTPUT_POLICY Integer. Set the version of the policy created when
building a monolithic policy. This option has no effect building a monolithic policy. This option has no effect
on modular policy. on modular policy.
UNK_PERMS String. Set the kernel behavior for handling of
permissions defined in the kernel but missing from the
policy. The permissions can either be allowed, denied,
or the policy loading can be rejected.
MLS_SENS Integer. Set the number of sensitivities in the MLS
policy. Ignored on standard and MCS policies.
MLS_CATS Integer. Set the number of categories in the MLS
policy. Ignored on standard and MCS policies.
MCS_CATS Integer. Set the number of categories in the MCS
policy. Ignored on standard and MLS policies.
QUIET Boolean. If set, the build system will only display QUIET Boolean. If set, the build system will only display
status messages and error messages. This option has no status messages and error messages. This option has no
effect on policy. effect on policy.