rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

dontaudit chroot, glibc compile is ok without it

Browse Source
This commit is contained in:
Chris PeBenito 2006-05-08 13:21:36 +00:00
parent 20e929e0a1
commit 858a1faefb
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
refpolicy/policy/modules/admin/portage.if
View File

@ -93,6 +93,7 @@ interface(`portage_run',`
interface(`portage_compile_domain',`
allow $1 self:capability { fowner fsetid mknod setgid setuid chown dac_override net_raw };
dontaudit $1 self:capability sys_chroot;
allow $1 self:process { setpgid setsched setrlimit signal_perms execmem };
allow $1 self:process ~{ ptrace setcurrent setexec setfscreate setrlimit execmem execstack execheap };
allow $1 self:fd use;