more updates for release

This commit is contained in:
Chris PeBenito 2005-08-01 17:55:04 +00:00
parent 60abb5fdab
commit 7c347cddcb
4 changed files with 39 additions and 13 deletions

View File

@ -1,6 +1,8 @@
<h1>Getting Started</h1> <h1>Getting Started</h1>
<p> <p>
This guide will walk you through the basics of creating a new reference policy module. This will also serve as an introduction to the basics concepts and philosophy of refpolicy. This guide will walk you through the basics of creating a new reference policy module. This will also serve as an introduction to the basics concepts and philosophy of refpolicy.
To install and use a targeted Reference Policy on a Fedora Core 4 system, see the
<a href="index.php?page=switch">switching guide</a>.
</p> </p>
<h2>Creating A Module</h2> <h2>Creating A Module</h2>
<p> <p>

View File

@ -3,6 +3,7 @@
<a href="index.php?page=contributing">Contributing</a><br/> <a href="index.php?page=contributing">Contributing</a><br/>
<a href="index.php?page=documentation">Documentation</a><br/> <a href="index.php?page=documentation">Documentation</a><br/>
- <a href="index.php?page=getting-started">Getting Started</a><br/> - <a href="index.php?page=getting-started">Getting Started</a><br/>
- <a href="index.php?page=switch">Switch to Reference Policy</a><br/>
- <a href="api-docs/">Interface Reference</a><br/> - <a href="api-docs/">Interface Reference</a><br/>
<a href="index.php?page=download">Download</a><br/> <a href="index.php?page=download">Download</a><br/>
<!--<IMG src="http://sourceforge.net/sflogo.php?group_id=???&amp;type=1" w <!--<IMG src="http://sourceforge.net/sflogo.php?group_id=???&amp;type=1" w

View File

@ -1,4 +1,4 @@
<h1>Switching to Reference Policy</h1> <h1>Switching to Targeted Reference Policy</h1>
<p> <p>
This guide will walk you through switching to the targeted reference This guide will walk you through switching to the targeted reference
policy on a Fedora system. policy on a Fedora system.
@ -11,21 +11,34 @@
from Sourceforge. Download the policy, and unpack it to a temporary from Sourceforge. Download the policy, and unpack it to a temporary
directory. Then use the install-src make target to install the policy directory. Then use the install-src make target to install the policy
sources. sources.
</p>
<div id="codeblock">
<pre> <pre>
# tar -jxvf refpolicy-20050711.tar.bz2 -C /tmp # tar -jxvf refpolicy-xxxxxxxx.tar.bz2 -C /tmp
# cd /tmp/refpolicy # cd /tmp/refpolicy
# make install-src # make install-src
</pre> </pre>
</div>
<h2> <h2>
Configure the policy Configure the policy
</h2> </h2>
<p>
The policy source is found in the
/etc/selinux/refpolicy/src/policy/ directory.
Use the example targeted modules configuration.
</p>
<div id="codeblock">
<pre>
# cd /etc/selinux/refpolicy/src/policy
# cp policy/modules.conf.targeted_example policy/modules.conf
</pre>
</div>
<p> <p>
Near the top of the policy Makefile, the policy has a few build options. Near the top of the policy Makefile, the policy has a few build options.
The TYPE needs to be set to targeted, and the DISTRO option needs to be The TYPE needs to be set to targeted, and the DISTRO option needs to be
uncommented, and set to redhat. The Makefile is found in the uncommented and set to redhat.
/etc/selinux/refpolicy/src/policy/ directory.
</p> </p>
<div id="codeblock">
<pre> <pre>
######################################## ########################################
# #
@ -65,13 +78,19 @@ MONOLITHIC=y
# Uncomment this to disable command echoing # Uncomment this to disable command echoing
#QUIET:=@ #QUIET:=@
</pre> </pre>
</div>
<h2> <h2>
Install the binary policy and application configuration files Install the policy
</h2> </h2>
<p>
Next, install the policy, application configuration files, and
file contexts.
</p>
<div id="codeblock">
<pre> <pre>
# cd /etc/selinux/refpolicy/src/policy
# make install # make install
</pre> </pre>
</div>
<h2> <h2>
Change SELinux Configuration Change SELinux Configuration
</h2> </h2>
@ -79,6 +98,7 @@ MONOLITHIC=y
Modify the /etc/selinux/config file, and set SELINUXTYPE to refpolicy. Modify the /etc/selinux/config file, and set SELINUXTYPE to refpolicy.
It should look similar to this: It should look similar to this:
</p> </p>
<div id="codeblock">
<pre> <pre>
# This file controls the state of SELinux on the system. # This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values: # SELINUX= can take one of these three values:
@ -91,14 +111,17 @@ SELINUX=enforcing
# strict - Full SELinux protection. # strict - Full SELinux protection.
SELINUXTYPE=<font color=red><b>refpolicy</b></font> SELINUXTYPE=<font color=red><b>refpolicy</b></font>
</pre> </pre>
</div>
<h2> <h2>
Relabel Restart and Relabel
</h2> </h2>
<p> <p>
The system needs to be restarted with the new policy, and relabeled The system needs to be restarted with the new policy, and relabeled
on booting. on booting.
</p> </p>
<div id="codeblock">
<pre> <pre>
# touch /.autorelabel # touch /.autorelabel
# shutdown -r now # shutdown -r now
</pre> </pre>
</div>

View File

@ -3,4 +3,4 @@
# This will 'publish' the reference policy website. # This will 'publish' the reference policy website.
cp ../refpolicy/Changelog html/Changelog.txt cp ../refpolicy/Changelog html/Changelog.txt
rsync -r . shell.sf.net:/home/groups/s/se/serefpolicy/htdocs rsync -avr --exclude .svn . shell.sf.net:/home/groups/s/se/serefpolicy/htdocs