Fixes for RHEL4 from the CLIP project.

This commit is contained in:
Chris PeBenito 2007-04-27 15:08:15 +00:00
parent cd16fe6e2c
commit d28e528b0d
7 changed files with 14 additions and 11 deletions

View File

@ -1,3 +1,4 @@
- Fixes for RHEL4 from the CLIP project.
- Replace the old lrrd fc entries with munin ones. - Replace the old lrrd fc entries with munin ones.
- Move program admin template usage out of userdom_admin_user_template() to - Move program admin template usage out of userdom_admin_user_template() to
sysadm policy in userdomain.te to fix usage of the template for third sysadm policy in userdomain.te to fix usage of the template for third

View File

@ -380,11 +380,12 @@ template(`ssh_per_role_template',`
nis_use_ypbind($1_ssh_agent_t) nis_use_ypbind($1_ssh_agent_t)
') ')
ifdef(`TODO',` optional_policy(`
ifdef(`xdm.te',` xserver_use_xdm_fds($1_ssh_agent_t)
can_pipe_xdm($1_ssh_agent_t) xserver_rw_xdm_pipes($1_ssh_agent_t)
') ')
ifdef(`TODO',`
dontaudit $1_ssh_agent_t proc_t:{ lnk_file file } { getattr read }; dontaudit $1_ssh_agent_t proc_t:{ lnk_file file } { getattr read };
') dnl endif TODO ') dnl endif TODO

View File

@ -1,5 +1,5 @@
policy_module(ssh,1.6.0) policy_module(ssh,1.6.1)
######################################## ########################################
# #

View File

@ -1,5 +1,5 @@
policy_module(authlogin,1.6.0) policy_module(authlogin,1.6.1)
######################################## ########################################
# #
@ -244,6 +244,7 @@ optional_policy(`
optional_policy(` optional_policy(`
xserver_read_xdm_pid(pam_console_t) xserver_read_xdm_pid(pam_console_t)
xserver_use_xdm_fds(pam_t)
') ')
######################################## ########################################

View File

@ -1,5 +1,5 @@
policy_module(hotplug,1.5.0) policy_module(hotplug,1.5.1)
######################################## ########################################
# #
@ -127,10 +127,10 @@ ifdef(`distro_redhat', `
ifdef(`targeted_policy', ` ifdef(`targeted_policy', `
term_dontaudit_use_unallocated_ttys(hotplug_t) term_dontaudit_use_unallocated_ttys(hotplug_t)
term_dontaudit_use_generic_ptys(hotplug_t) term_dontaudit_use_generic_ptys(hotplug_t)
')
optional_policy(` optional_policy(`
consoletype_exec(hotplug_t) consoletype_exec(hotplug_t)
')
') ')
optional_policy(` optional_policy(`

View File

@ -1088,7 +1088,7 @@ interface(`init_rw_script_tmp_files',`
') ')
files_search_tmp($1) files_search_tmp($1)
allow $1 initrc_tmp_t:file rw_file_perms; rw_files_pattern($1,initrc_tmp_t,initrc_tmp_t)
') ')
######################################## ########################################

View File

@ -1,5 +1,5 @@
policy_module(init,1.6.0) policy_module(init,1.6.1)
gen_require(` gen_require(`
class passwd rootok; class passwd rootok;