Fixes for RHEL4 from the CLIP project.
This commit is contained in:
parent
cd16fe6e2c
commit
d28e528b0d
@ -1,3 +1,4 @@
|
|||||||
|
- Fixes for RHEL4 from the CLIP project.
|
||||||
- Replace the old lrrd fc entries with munin ones.
|
- Replace the old lrrd fc entries with munin ones.
|
||||||
- Move program admin template usage out of userdom_admin_user_template() to
|
- Move program admin template usage out of userdom_admin_user_template() to
|
||||||
sysadm policy in userdomain.te to fix usage of the template for third
|
sysadm policy in userdomain.te to fix usage of the template for third
|
||||||
|
@ -380,11 +380,12 @@ template(`ssh_per_role_template',`
|
|||||||
nis_use_ypbind($1_ssh_agent_t)
|
nis_use_ypbind($1_ssh_agent_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
ifdef(`TODO',`
|
optional_policy(`
|
||||||
ifdef(`xdm.te',`
|
xserver_use_xdm_fds($1_ssh_agent_t)
|
||||||
can_pipe_xdm($1_ssh_agent_t)
|
xserver_rw_xdm_pipes($1_ssh_agent_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
|
ifdef(`TODO',`
|
||||||
dontaudit $1_ssh_agent_t proc_t:{ lnk_file file } { getattr read };
|
dontaudit $1_ssh_agent_t proc_t:{ lnk_file file } { getattr read };
|
||||||
') dnl endif TODO
|
') dnl endif TODO
|
||||||
|
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
policy_module(ssh,1.6.0)
|
policy_module(ssh,1.6.1)
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
#
|
#
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
policy_module(authlogin,1.6.0)
|
policy_module(authlogin,1.6.1)
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
#
|
#
|
||||||
@ -244,6 +244,7 @@ optional_policy(`
|
|||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
xserver_read_xdm_pid(pam_console_t)
|
xserver_read_xdm_pid(pam_console_t)
|
||||||
|
xserver_use_xdm_fds(pam_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
policy_module(hotplug,1.5.0)
|
policy_module(hotplug,1.5.1)
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
#
|
#
|
||||||
@ -127,10 +127,10 @@ ifdef(`distro_redhat', `
|
|||||||
ifdef(`targeted_policy', `
|
ifdef(`targeted_policy', `
|
||||||
term_dontaudit_use_unallocated_ttys(hotplug_t)
|
term_dontaudit_use_unallocated_ttys(hotplug_t)
|
||||||
term_dontaudit_use_generic_ptys(hotplug_t)
|
term_dontaudit_use_generic_ptys(hotplug_t)
|
||||||
|
')
|
||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
consoletype_exec(hotplug_t)
|
consoletype_exec(hotplug_t)
|
||||||
')
|
|
||||||
')
|
')
|
||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
|
@ -1088,7 +1088,7 @@ interface(`init_rw_script_tmp_files',`
|
|||||||
')
|
')
|
||||||
|
|
||||||
files_search_tmp($1)
|
files_search_tmp($1)
|
||||||
allow $1 initrc_tmp_t:file rw_file_perms;
|
rw_files_pattern($1,initrc_tmp_t,initrc_tmp_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
policy_module(init,1.6.0)
|
policy_module(init,1.6.1)
|
||||||
|
|
||||||
gen_require(`
|
gen_require(`
|
||||||
class passwd rootok;
|
class passwd rootok;
|
||||||
|
Loading…
Reference in New Issue
Block a user