rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity
321 Commits 8 Branches 92 Tags 37 MiB
16c971a867
Commit Graph

309 Commits

Author SHA1 Message Date
Daniel J Walsh
358335b9db - Update from Upstream 2006-06-14 15:48:59 +00:00
Daniel J Walsh
0fe5c73fe8 - Fix spec of realplay 2006-06-13 19:39:56 +00:00
Daniel J Walsh
2616c66ff4 - Update to upstream 2006-06-13 18:26:00 +00:00
Daniel J Walsh
b637d98325 - Allow useradd to create_home_dir in MLS environment 2006-06-12 14:51:08 +00:00
Daniel J Walsh
3004d53f75 - Update from upstream 2006-06-09 03:03:22 +00:00
Daniel J Walsh
c54f60d6ea - Update from upstream 2006-06-09 02:55:43 +00:00
Daniel J Walsh
cfc04db0db - Update from upstream 2006-06-08 14:03:38 +00:00
Daniel J Walsh
a4c7090921 - Add oprofilefs 2006-06-06 21:33:13 +00:00
Daniel J Walsh
a55870f781 - Fix for hplip and Picasa 2006-05-28 14:30:02 +00:00
Daniel J Walsh
43fe713171 - Update to upstream 2006-05-28 10:56:26 +00:00
Daniel J Walsh
7580a10c69 - fixes for java, openldap and webalizer 2006-05-26 10:09:26 +00:00
Daniel J Walsh
d065eef7e9 - Xen fixes 2006-05-24 03:12:56 +00:00
Daniel J Walsh
e30da942d7 - Xen fixes 2006-05-24 02:35:38 +00:00
Daniel J Walsh
e5e5095da5 - Upgrade to upstream 2006-05-20 12:01:14 +00:00
Daniel J Walsh
75d0fe4f47 - allow hal to read boot_t files 
- Upgrade to upstream
 2006-05-18 16:07:35 +00:00
Daniel J Walsh
4aae36507b - allow hal to read boot_t files 2006-05-18 15:42:55 +00:00
Daniel J Walsh
f4d170770a - Update from upstream 2006-05-17 01:40:53 +00:00
Daniel J Walsh
82d40f4e47 - Fixes for amavis 2006-05-15 20:48:00 +00:00
Daniel J Walsh
52288bc69c - Update from upstream 2006-05-15 16:20:58 +00:00
Daniel J Walsh
a97d1fe713 - Allow auditctl to search all directories 2006-05-12 18:59:26 +00:00
Daniel J Walsh
f08aca0783 - Add acquire service for mono. 2006-05-12 03:12:32 +00:00
Daniel J Walsh
89e397d026 - Turn off allow_execmem boolean 
- Allow ftp dac_override when allowed to access users homedirs
 2006-05-12 02:39:30 +00:00
Daniel J Walsh
ca8bc2df6e - Clean up spec file 
- Transition from unconfined_t to prelink_t
 2006-05-10 20:00:43 +00:00
Daniel J Walsh
539ba8aee6 - Allow execution of cvs command 2006-05-09 21:50:36 +00:00
Daniel J Walsh
a52275425c - Update to upstream 2006-05-08 19:26:49 +00:00
Daniel J Walsh
529f12c952 - Update to upstream 2006-05-04 17:39:16 +00:00
Daniel J Walsh
49dfee4ffa - Fix libjvm spec 2006-05-01 21:24:26 +00:00
Daniel J Walsh
ea725ce70c - Update to upstream 2006-04-29 04:47:05 +00:00
jantill
684125a0be - Add xm policy 
- Fix policygentool
 2006-04-25 15:19:51 +00:00
Daniel J Walsh
bbaa1f26d1 - Update to upstream 
- Fix postun to only disable selinux on full removal of the packages
 2006-04-25 11:03:12 +00:00
Daniel J Walsh
e847c84988 - Allow mono to chat with unconfined 2006-04-21 10:57:09 +00:00
Daniel J Walsh
d2fe1b1403 - Allow procmail to sendmail 
- Allow nfs to share dosfs
 2006-04-20 19:32:44 +00:00
Daniel J Walsh
5ff36d645b - Update to latest from upstream 
- Allow selinux-policy to be removed and kernel not to crash
 2006-04-19 17:37:38 +00:00
Daniel J Walsh
c74f145e08 - Update to latest from upstream 
- Add James Antill patch for xen
- Many fixes for pegasus
 2006-04-19 12:10:10 +00:00
Daniel J Walsh
3c584c7edb - Add unconfined_mount_t 2006-04-17 11:27:44 +00:00
Daniel J Walsh
ca0597162d - Update to latest from upstream 2006-04-14 19:50:03 +00:00
Daniel J Walsh
c4826d0271 - Update to latest from upstream 
- Allow mono and unconfined to talk to initrc_t dbus objects
 2006-04-13 21:28:19 +00:00
Daniel J Walsh
c7b01adddf - Change libraries.fc to stop shlib_t form overriding texrel_shlib_t 2006-04-11 21:58:53 +00:00
Daniel J Walsh
5cbfde1710 - Allow secadm_t ability to relabel all files 
- Allow ftp to search xferlog_t directories
- Allow mysql to communicate with ldap
- Allow rsync to bind to rsync_port_t
 2006-04-11 20:59:57 +00:00
Daniel J Walsh
c53f3b88ff - Allow secadm_t ability to relabel all files 
- Allow ftp to search xferlog_t directories
- Allow mysql to communicate with ldap
- Allow rsync to bind to rsync_port_t
 2006-04-10 21:10:33 +00:00
rcoker
a442ed4616 Change file contexts and several minor policy changes. 2006-04-10 12:15:07 +00:00
Daniel J Walsh
67bc5ebb6c - More textrel_shlib_t file path fixes 
- Add ada support
 2006-04-06 19:08:54 +00:00
Daniel J Walsh
4fd214b03b - Get auditctl working in MLS policy 2006-04-04 10:07:53 +00:00
Daniel J Walsh
2ad4f12eff - Add mono dbus support 
- Lots of file_context fixes for textrel_shlib_t in FC5
- Turn off execmem auditallow since they are filling log files
 2006-04-03 17:17:13 +00:00
Daniel J Walsh
da5d600a11 - Update to upstream 2006-03-31 20:57:44 +00:00
Daniel J Walsh
d2bd4f4f3d - Allow automount and dbus to read cert files 2006-03-30 22:27:52 +00:00
Daniel J Walsh
58ec7a5124 - Fix ftp policy 
- Fix secadm running of auditctl
 2006-03-30 19:57:31 +00:00
Daniel J Walsh
5c1cd7105c - Update to upstream 2006-03-29 20:21:25 +00:00
Daniel J Walsh
bbe0ad9e91 - Update to upstream 2006-03-27 22:47:14 +00:00
Daniel J Walsh
5a014310cd - Update to upstream 2006-03-27 22:07:37 +00:00
Daniel J Walsh
bd3f0ea368 - Fix policyhelp 2006-03-24 16:44:06 +00:00
Daniel J Walsh
faffd3afe5 - Fix pam_console handling of usb_device 
- dontaudit logwatch reading /mnt dir
 2006-03-22 15:56:09 +00:00
Daniel J Walsh
414d6d811a - Update to upstream 2006-03-21 19:46:10 +00:00
Daniel J Walsh
ad73e86386 - Update to upstream 2006-03-21 15:42:38 +00:00
Daniel J Walsh
727bb2e4d1 - Update to upstream 2006-03-18 04:09:10 +00:00
Daniel J Walsh
9f8b0589bf - Get transition rules to create policy.20 at SystemHigh 2006-03-16 14:41:17 +00:00
Daniel J Walsh
5b46764cba - Allow secadmin to shutdown system 
- Allow sendmail to exec newalias
 2006-03-14 22:43:44 +00:00
Daniel J Walsh
6d42754555 - MLS Fixes dmidecode needs mls_file_read_up 
- add ypxfr_t
- run init needs access to nscd
- udev needs setuid
- another xen log file
- Dontaudit mount getattr proc_kcore_t
 2006-03-14 20:15:31 +00:00
Daniel J Walsh
0a74a26d18 - MLS Fixes dmidecode needs mls_file_read_up 
- add ypxfr_t
- run init needs access to nscd
- udev needs setuid
- another xen log file
- Dontaudit mount getattr proc_kcore_t
 2006-03-14 20:13:28 +00:00
Karsten Hopp
4e431cfdce - remove mkdir /usr/share/selinux/, it's not required and even wrong 
without a prepended $RPM_BUILD_ROOT (#185391)
 2006-03-14 10:37:14 +00:00
Daniel J Walsh
4c9f08fbba - Get rid of mount/fsdisk scan of /dev messages 
- Additional fixes for suspend/resume
 2006-03-09 21:50:18 +00:00
Daniel J Walsh
54b0b5869e - Fake make to rebuild enableaudit.pp 2006-03-09 18:30:56 +00:00
Daniel J Walsh
6d2388955d - Get xen networking running. 2006-03-09 18:12:23 +00:00
Daniel J Walsh
23a177b7c3 - Fixes for Xen 
- enableaudit should not be the same as base.pp
- Allow ps to work for all process
 2006-03-09 15:34:49 +00:00
Jeremy Katz
b33ec3c21d - more xen policy fixups 2006-03-09 05:09:46 +00:00
Jeremy Katz
1b07552d67 - more xen fixage (#184393) 2006-03-09 00:18:57 +00:00
Daniel J Walsh
060041b7bf - Fix blkid specification 
- Allow postfix to execute mailman_que
 2006-03-08 22:11:17 +00:00
Daniel J Walsh
9c64bb6f27 - Blkid changes 
- Allow udev access to usb_device_t
- Fix post script to create targeted policy config file
 2006-03-08 20:40:43 +00:00
Daniel J Walsh
4c9f658bb2 - Allow lvm tools to create drevice dir 2006-03-08 17:02:01 +00:00
Daniel J Walsh
020477271b - Add Xen support 2006-03-07 22:22:14 +00:00
Daniel J Walsh
72a1365426 - Fixes for cups 
- Make cryptosetup work with hal
 2006-03-06 23:05:10 +00:00
Daniel J Walsh
0296aff141 - Fixes for cups 
- Make cryptosetup work with hal
 2006-03-06 21:33:51 +00:00
Daniel J Walsh
76d7c52ccf - Load Policy needs translock 2006-03-06 02:00:43 +00:00
Daniel J Walsh
ef0cb15960 - Fix cups html interface 2006-03-04 23:24:54 +00:00
Daniel J Walsh
21277d9d7a - Add hal changes suggested by Jeremy 
- add policyhelp to point at policy html pages
 2006-03-04 14:49:35 +00:00
Daniel J Walsh
d2c2609f8c - add policyhelp to point at policy html pages 2006-03-04 05:10:54 +00:00
Daniel J Walsh
8254bb0ce6 - Additional fixes for nvidia and cups 2006-02-27 23:23:06 +00:00
Daniel J Walsh
575aa98fb7 - Update to upstream 
- Merged my latest fixes
- Fix cups policy to handle unix domain sockets
 2006-02-27 23:00:40 +00:00
Daniel J Walsh
fbec4b5191 *** empty log message *** 2006-02-25 20:50:53 +00:00
Daniel J Walsh
290aa68ca4 *** empty log message *** 2006-02-24 20:50:49 +00:00
Daniel J Walsh
dd2612b757 *** empty log message *** 2006-02-24 18:39:09 +00:00
Daniel J Walsh
e135c767ec *** empty log message *** 2006-02-24 16:45:01 +00:00
Daniel J Walsh
7716868268 *** empty log message *** 2006-02-24 16:43:26 +00:00
Daniel J Walsh
c126996365 *** empty log message *** 2006-02-24 15:50:38 +00:00
Daniel J Walsh
7dca0e2e81 *** empty log message *** 2006-02-23 22:28:34 +00:00
Daniel J Walsh
5d5343f8cc *** empty log message *** 2006-02-23 21:02:49 +00:00
Daniel J Walsh
d19b685646 *** empty log message *** 2006-02-23 18:56:17 +00:00
Daniel J Walsh
701455e3c5 *** empty log message *** 2006-02-23 15:12:37 +00:00
Daniel J Walsh
585f827b55 *** empty log message *** 2006-02-22 22:46:02 +00:00
Daniel J Walsh
d4d1f2b10a *** empty log message *** 2006-02-22 18:48:03 +00:00
Daniel J Walsh
4dab27663b *** empty log message *** 2006-02-22 18:41:25 +00:00
Daniel J Walsh
a57054e5e9 *** empty log message *** 2006-02-22 00:53:12 +00:00
Daniel J Walsh
d5ae27dcc7 *** empty log message *** 2006-02-21 20:39:54 +00:00
Daniel J Walsh
28c4257a6b *** empty log message *** 2006-02-21 19:17:26 +00:00
Daniel J Walsh
46bd65b6cf *** empty log message *** 2006-02-21 19:16:52 +00:00
Daniel J Walsh
31d4d26d94 *** empty log message *** 2006-02-21 15:36:15 +00:00
Daniel J Walsh
f0e87bc6c8 *** empty log message *** 2006-02-21 04:51:22 +00:00
Daniel J Walsh
3debd0a982 *** empty log message *** 2006-02-20 22:11:40 +00:00
Daniel J Walsh
6e9bcb4a8d *** empty log message *** 2006-02-19 12:17:15 +00:00
Daniel J Walsh
f3a3900067 *** empty log message *** 2006-02-15 16:19:41 +00:00
Daniel J Walsh
025d1ec54d *** empty log message *** 2006-02-14 22:48:01 +00:00
Daniel J Walsh
2f15a23304 *** empty log message *** 2006-02-14 21:52:23 +00:00
Daniel J Walsh
c417f6b886 *** empty log message *** 2006-02-14 17:11:59 +00:00
Daniel J Walsh
cb99f70c9e *** empty log message *** 2006-02-13 19:51:43 +00:00
Daniel J Walsh
847884da96 *** empty log message *** 2006-02-13 17:14:30 +00:00
Daniel J Walsh
32b8716cff *** empty log message *** 2006-02-13 15:55:10 +00:00
Daniel J Walsh
faa80bb2e1 *** empty log message *** 2006-02-11 02:41:50 +00:00
Daniel J Walsh
5a82999d92 *** empty log message *** 2006-02-09 12:26:53 +00:00
Daniel J Walsh
b28bebeb11 *** empty log message *** 2006-02-06 19:12:13 +00:00
Daniel J Walsh
a3a62aba77 *** empty log message *** 2006-02-04 03:03:32 +00:00
Daniel J Walsh
de82d855b5 *** empty log message *** 2006-02-03 14:59:07 +00:00
Daniel J Walsh
38c8068bd0 *** empty log message *** 2006-02-01 13:21:35 +00:00
Daniel J Walsh
681c9dc1a9 - Update to upstream 
- Fix rhgb, and other Xorg startups
 2006-01-31 00:35:32 +00:00
Daniel J Walsh
737432388b - Update to upstream 
- Fix rhgb, and other Xorg startups
 2006-01-28 05:39:52 +00:00
Daniel J Walsh
33253774cc - Update to upstream 
- Fix rhgb
 2006-01-28 04:52:34 +00:00
Daniel J Walsh
70d9b4899e - Update to upstream 2006-01-28 04:50:20 +00:00
Daniel J Walsh
78265f434d - Update to upstream 2006-01-27 07:06:21 +00:00
Daniel J Walsh
b6e6b56d1a - Add inotifyfs handling 2006-01-26 17:02:46 +00:00
Daniel J Walsh
e76babe5db - Update to upstream 
- Put back in changes for pup/zen
 2006-01-26 15:47:02 +00:00
Daniel J Walsh
a3b5c300fa - Many changes for MLS 
- Turn on strict policy
 2006-01-24 21:47:16 +00:00
Daniel J Walsh
129ba16c5a - Update to upstream 2006-01-24 15:41:46 +00:00
Daniel J Walsh
30a020fcb8 - Update to upstream 
- Turn off execheap execstack for unconfined users
- Add mono/wine policy to allow execheap and execstack for them
- Add execheap for Xdm policy
 2006-01-19 19:10:47 +00:00
Daniel J Walsh
05207b6b63 - Update to upstream 2006-01-17 22:47:12 +00:00
Daniel J Walsh
a1c584a9c1 - Update to upstream 
- Add rules to allow rpcd to work with unlabeled_networks.
 2006-01-17 20:02:54 +00:00
Daniel J Walsh
2e71478caf - Update to upstream 2006-01-17 19:40:15 +00:00
Daniel J Walsh
cdab5cb3e1 - Update to upstream 
- Fix ftp Man page
 2006-01-17 03:55:13 +00:00
Daniel J Walsh
7ba8b0d5a8 - Update to upstream 2006-01-13 22:32:06 +00:00
Jeremy Katz
b9b2d8a63a - fix pup transitions (#177262) 
- fix xen disks (#177599)
 2006-01-12 02:36:17 +00:00
Daniel J Walsh
64012806da - Update to upstream 2006-01-11 22:25:06 +00:00
Daniel J Walsh
ef14779637 - More Fixes for hal and readahead 2006-01-10 17:36:14 +00:00
Daniel J Walsh
e485f59f95 - Fixes for hal and readahead 2006-01-09 22:50:57 +00:00
Daniel J Walsh
26e33dff20 - Update to upstream 2006-01-09 20:20:08 +00:00
Daniel J Walsh
451d9b499b - Handle new location of hal scripts 2006-01-06 01:04:12 +00:00
Daniel J Walsh
0088858611 - Allow su to read /etc/mtab 2006-01-05 21:55:48 +00:00
Daniel J Walsh
026fac633f - Update to upstream 2006-01-04 19:21:36 +00:00
Daniel J Walsh
2864321e7c - Update to upstream 2006-01-04 19:20:36 +00:00
Daniel J Walsh
a736f971f2 - Update to upstream 2006-01-04 19:02:16 +00:00
Daniel J Walsh
120d3b52ce - Fix "libsemanage.parse_module_headers: Data did not represent a module." 
problem
 2006-01-03 18:23:17 +00:00
Daniel J Walsh
ce66f5002d - Allow load_policy to read /etc/mtab 2006-01-03 17:21:11 +00:00
Daniel J Walsh
1f312240b0 - Fix dovecot to allow dovecot_auth to look at /tmp 2006-01-02 19:56:17 +00:00
Daniel J Walsh
d7b05bca05 - Allow restorecon to read unlabeled_t directories in order to fix 
labeling.
 2006-01-02 19:38:23 +00:00
Daniel J Walsh
3607aaf0c5 - Add Logwatch policy 2006-01-02 13:26:14 +00:00
Daniel J Walsh
a08ba87128 - Add Logwatch policy 2005-12-30 16:08:00 +00:00
Daniel J Walsh
798572ff3d - Fix /dev/ub[a-z] file context 2005-12-28 12:56:36 +00:00
Daniel J Walsh
9f7b037d0a - Fix library specification 
- Give kudzu execmem privs
 2005-12-27 20:34:15 +00:00
Daniel J Walsh
596229f500 - Fix hostname in targeted policy 2005-12-22 22:35:01 +00:00
Daniel J Walsh
5a47e648ad - Fix passwd command on mls 2005-12-22 21:40:15 +00:00
Daniel J Walsh
71ee99d3db - Lots of fixes to make mls policy work 2005-12-21 18:07:27 +00:00
Daniel J Walsh
6e9ee77d3b - Add dri libs to textrel_shlib_t 
- Add system_r role for java
- Add unconfined_exec_t for vncserver
- Allow slapd to use kerberos
 2005-12-20 22:47:39 +00:00
Daniel J Walsh
9d20b260a9 - Add dri libs to textrel_shlib_t 2005-12-20 19:03:31 +00:00