rpms
/
selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity
4,550 Commits 8 Branches 90 Tags 36 MiB
Commit Graph

80 Commits

Author SHA1 Message Date
Miroslav Grepl 116d73139a - gnomeclock executes a shell 
- Update for screen policy to handle pipe in homedir
- Fixes for polyinstatiated homedir
- Fixes for namespace policy and other fixes related to polyinstantiation
- Add namespace policy
- Allow dovecot-deliver transition to sendmail which is needed by sieve scri
- Fixes for init, psad policy which relate with confined users
- Do not audit bootloader attempts to read devicekit pid files
- Allow nagios service plugins to read /proc
 2011-01-14 17:48:34 +00:00
Miroslav Grepl 3c0b9eac8c - Turn on systemd policy 
- mozilla_plugin needs to read certs in the homedir.
- Dontaudit leaked file descriptors from devicekit
- Fix ircssi to use auth_use_nsswitch
- Change to use interface without param in corenet to disable unlabelednet
- Allow init to relabel sockets and fifo files in /dev
- certmonger needs dac* capabilities to manage cert files not owned by root
- dovecot needs fsetid to change group membership on mail
- plymouthd removes /var/log/boot.log
- systemd is creating symlinks in /dev
- Change label on /etc/httpd/alias to be all cert_t
 2010-12-13 18:56:13 +00:00
Miroslav Grepl c2ad3681fa - Push fixes to allow disabling of unlabeled_t packet access 
- Enable unlabelednet policy
 2010-12-07 17:51:16 +00:00
Dan Walsh 06262c1566 - Update to upstream 
- Add vlock policy
 2010-11-05 12:40:07 -04:00
Dan Walsh 6578cf7413 - More access needed for devicekit 
- Add dbadm policy
 2010-08-30 11:58:36 -04:00
Dan Walsh ba77266a14 - Merge with upstream 2010-08-26 20:35:53 -04:00
Dan Walsh 922cd61e83 * Tue Aug 10 2010 Dan Walsh <dwalsh@redhat.com> 3.8.8-12 
- Fix devicekit_power bug
- Allow policykit_auth_t more access.
 2010-08-11 07:55:04 -04:00
Daniel J Walsh 8d55a410dc - New permissions for syslog 
- New labels for /lib/upstart
 2010-07-26 20:32:18 +00:00
Daniel J Walsh 0f2ae00c61 - Update to upstream 2010-07-15 13:11:25 +00:00
Daniel J Walsh 244b4526c6 - Cleanup of aiccu policy 
- initial mock policy
 2010-06-16 18:25:47 +00:00
Daniel J Walsh bca242c772 - Add xdm_var_run_t to xserver_stream_connect_xdm 
- Add cmorrord and mpd policy from Miroslav Grepl
 2010-06-02 19:36:11 +00:00
Daniel J Walsh bc4089cfaa - Update to upstream 2010-05-26 21:15:42 +00:00
Daniel J Walsh a72c31df34 - Update to upstream 2010-03-18 15:47:35 +00:00
Daniel J Walsh add957370e - Merge with upstream 2010-02-16 22:10:14 +00:00
Daniel J Walsh 487de6f251 - Add icecast policy 
- Cleanup spec file
 2010-02-08 22:06:23 +00:00
Daniel J Walsh 30c21992cb - Add mcelog policy 2010-02-03 20:52:58 +00:00
Daniel J Walsh 550cc5f4f4 - Add back xserver_manage_home_fonts 2009-12-22 17:25:13 +00:00
Daniel J Walsh 194b53e038 - Fixes for abrt calls 2009-12-17 19:34:18 +00:00
Daniel J Walsh 9c90ba7e8e - Add tgtd policy 2009-12-16 13:30:38 +00:00
Daniel J Walsh 755e2d6934 - Add tgtd policy 2009-12-11 20:18:55 +00:00
Daniel J Walsh 99d8f9cf05 - Update to upstream 2009-11-16 19:57:19 +00:00
Daniel J Walsh d976a83a17 - Allow cupsd_config to read user tmp 
- Allow snmpd_t to signal itself
- Allow sysstat_t to makedir in sysstat_log_t
 2009-09-30 17:37:44 +00:00
Daniel J Walsh b8498d1e5b - More fixes 2009-09-08 23:55:31 +00:00
Daniel J Walsh 867473ac62 - Add kdump policy for Miroslav Grepl 
- Turn off execstack boolean
 2009-08-10 18:22:10 +00:00
Daniel J Walsh c6e2224c70 - Fix polkit label 
- Remove hidebrokensymptoms for nss_ldap fix
- Add modemmanager policy
- Lots of merges from upstream
- Begin removing textrel_shlib_t labels, from fixed libraries
 2009-07-30 04:31:53 +00:00
Daniel J Walsh 5cb9569db7 - Update to upstream 2009-07-24 08:32:40 +00:00
Daniel J Walsh f49c57d5e6 - Allow setroubelshoot exec* privs to prevent crash from bad libraries 
- add cpufreqselector
 2009-04-03 14:45:58 +00:00
Daniel J Walsh 5dce3c12f7 - Add xenner and wine fixes from mgrepl 2009-03-20 18:42:38 +00:00
Daniel J Walsh 46b5649f90 - Add pulseaudio context 2009-03-09 21:17:23 +00:00
Daniel J Walsh 0c34c69a38 - Add pulseaudio context 2009-03-09 16:18:51 +00:00
Daniel J Walsh 4f5b223107 - Upgrade to latest patches 2009-03-06 21:11:04 +00:00
Daniel J Walsh a67a1c12aa - Upgrade to latest patches 2009-03-05 21:05:47 +00:00
Daniel J Walsh 496752533e - Further confinement of qemu images via svirt 2009-02-27 21:22:47 +00:00
Daniel J Walsh 2fbeb784fa - Fixes for wicd daemon 2009-01-28 22:23:18 +00:00
Daniel J Walsh 1b94a1375f - Add wm policy 2009-01-21 20:39:17 +00:00
Daniel J Walsh 2a4bdae89c - Fixed for DeviceKit 2009-01-21 16:17:40 +00:00
Daniel J Walsh 7b146db852 - Define openoffice as an x_domain 2009-01-19 14:28:24 +00:00
Daniel J Walsh eacea1d45d - Define openoffice as an x_domain 2009-01-16 21:32:59 +00:00
Daniel J Walsh 0891b2a12d - Define openoffice as an x_domain 2009-01-16 21:11:58 +00:00
Daniel J Walsh 7b43f5254f - Fix labeling on /var/spool/rsyslog 2008-12-02 19:59:35 +00:00
Daniel J Walsh 02d888c766 - Fix labeling on /var/spool/rsyslog 2008-11-25 19:18:01 +00:00
Daniel J Walsh 074b12f275 - Fix cyphesis file context 2008-11-05 20:34:06 +00:00
Daniel J Walsh 675bbabe24 - Update to upstream policy 2008-10-09 03:10:32 +00:00
Daniel J Walsh 11ef2470b7 - Fix labeling on new pm*log 
- Allow ssh to bind to all nodes
 2008-09-18 21:02:12 +00:00
Daniel J Walsh 8d197ddd11 - Merge upstream changes 
- Add Xavier Toth patches
 2008-09-18 14:19:06 +00:00
Daniel J Walsh 16c3ff1596 - Merge upstream changes 
- Add Xavier Toth patches
 2008-09-12 14:21:05 +00:00
Daniel J Walsh cd60b64c83 - Allow gdm to read rpm database 
- Allow nsplugin to read mplayer config files
 2008-06-30 21:12:23 +00:00
Daniel J Walsh 4b7f030014 Update for rawhide 2008-05-19 13:02:56 +00:00
Daniel J Walsh 5896bad9cf 2008-04-14 20:01:48 +00:00
Daniel J Walsh 1bf67d57ed - Fix initrc_context generation for MLS 2008-03-06 22:25:06 +00:00