Chris PeBenito
|
01e30c9b2d
|
initial commit
|
2005-07-27 14:32:12 +00:00 |
|
Chris PeBenito
|
78d30cb1f4
|
Fix handling of ordered and unordered HTML lists.
|
2005-07-22 19:15:49 +00:00 |
|
Chris PeBenito
|
022f61c0e3
|
add connect interface on ports to handle name_connect tcp perm
|
2005-07-22 15:38:01 +00:00 |
|
Chris PeBenito
|
50527cf581
|
make network_interface able to support multiple interfaces having the same type
|
2005-07-22 14:00:38 +00:00 |
|
Chris PeBenito
|
953541a918
|
update from privmail
|
2005-07-21 20:34:57 +00:00 |
|
Chris PeBenito
|
7bb6108ffe
|
massive updates
|
2005-07-21 20:34:12 +00:00 |
|
Chris PeBenito
|
80526ccbdd
|
add an example module config for a targeted policy
|
2005-07-20 20:11:49 +00:00 |
|
Chris PeBenito
|
ea7d571bd7
|
/var/lib is now a mountpoint
|
2005-07-20 17:36:48 +00:00 |
|
Chris PeBenito
|
53857c8c05
|
unconfined can pass all constraints
|
2005-07-20 17:24:23 +00:00 |
|
Chris PeBenito
|
ef424c14d4
|
name_connect only on tcp_sockets
|
2005-07-20 17:10:07 +00:00 |
|
Chris PeBenito
|
9496fd5119
|
unconfined can name_connect to all ports
|
2005-07-20 17:08:07 +00:00 |
|
Chris PeBenito
|
d250634311
|
reorder kernel policy, add attributes for sysctl and proc entries. fix unconfined interface
|
2005-07-20 17:06:10 +00:00 |
|
Chris PeBenito
|
f82c6ac64c
|
bah typo
|
2005-07-20 15:08:33 +00:00 |
|
Chris PeBenito
|
0b28a23114
|
user home dirs were missing file type in targ policy
|
2005-07-20 15:06:49 +00:00 |
|
Chris PeBenito
|
1e3f610b3b
|
add missing dir and file perms for selinuxfs in unconfined
|
2005-07-20 14:57:13 +00:00 |
|
Chris PeBenito
|
689f6ddb35
|
fix typos and import some rules from NSA cvs to make targeted policy work
|
2005-07-20 14:25:24 +00:00 |
|
Chris PeBenito
|
474f43d13d
|
should actually try compiling first :x
|
2005-07-20 13:39:10 +00:00 |
|
Chris PeBenito
|
bd7e7a6417
|
missed a line
|
2005-07-20 13:37:18 +00:00 |
|
Chris PeBenito
|
a28f6db576
|
add in some rules from NSA CVS to make targeted policy work
|
2005-07-20 13:30:06 +00:00 |
|
Chris PeBenito
|
8c3f438f75
|
corenet was missing from unconfined
|
2005-07-19 20:38:26 +00:00 |
|
Chris PeBenito
|
892266ca76
|
more targeted policy fixes
|
2005-07-19 20:26:02 +00:00 |
|
Chris PeBenito
|
21f47732b1
|
add new netlink socket class
|
2005-07-19 20:25:42 +00:00 |
|
Chris PeBenito
|
ec848d247f
|
more fixes for targeted
|
2005-07-19 19:37:43 +00:00 |
|
Chris PeBenito
|
2ec4c9d38f
|
more cleanup
|
2005-07-19 18:40:31 +00:00 |
|
Chris PeBenito
|
8b0bbdda34
|
fixes for targeted policy
|
2005-07-19 18:40:19 +00:00 |
|
Chris PeBenito
|
391edeb577
|
fix assertions for framework
|
2005-07-18 20:17:21 +00:00 |
|
Chris PeBenito
|
a5f339f134
|
more cleanup in system
|
2005-07-18 18:31:49 +00:00 |
|
Chris PeBenito
|
9f103ce14b
|
fix to use context_template()
|
2005-07-18 14:25:05 +00:00 |
|
Chris PeBenito
|
3b6174a142
|
add missing context template
|
2005-07-15 20:54:24 +00:00 |
|
Chris PeBenito
|
50aca6d2f9
|
add raid (mdadm)
|
2005-07-15 20:45:26 +00:00 |
|
Chris PeBenito
|
d9fd8e7562
|
more pcmcia cleanup
|
2005-07-15 19:18:55 +00:00 |
|
Chris PeBenito
|
157c69416f
|
add macro to expand object class sets for use in require blocks
|
2005-07-15 15:53:54 +00:00 |
|
Chris PeBenito
|
50f6503452
|
* break up files_getattr_all_files into correct interfaces
* move stuff out of pcmcia into the appropriate modules
|
2005-07-15 15:17:57 +00:00 |
|
Chris PeBenito
|
f136a944c5
|
reorder in alpha order of type, for sanity purposes
|
2005-07-15 14:30:19 +00:00 |
|
Chris PeBenito
|
316553a275
|
add pcmcia
|
2005-07-14 20:58:57 +00:00 |
|
Chris PeBenito
|
e0d57fbcb1
|
add pcmcia
|
2005-07-14 20:57:17 +00:00 |
|
Chris PeBenito
|
c429cb5e26
|
fix up the xml
|
2005-07-14 20:02:53 +00:00 |
|
Chris PeBenito
|
11633bbaa8
|
add ipsec
|
2005-07-14 18:15:47 +00:00 |
|
Chris PeBenito
|
8125c93a07
|
more updates
|
2005-07-13 20:50:20 +00:00 |
|
Chris PeBenito
|
493d6c4adc
|
add nscd
|
2005-07-13 20:48:51 +00:00 |
|
Chris PeBenito
|
df00b2e235
|
* fix chroot exec interface
* more TODO cleanup
* move IPC out of generic domtrans interfaces
|
2005-07-13 18:29:08 +00:00 |
|
Chris PeBenito
|
25a0c61ffc
|
add distro tunables. expand on a few comments
|
2005-07-13 18:08:12 +00:00 |
|
Chris PeBenito
|
b24f35d8a3
|
more cleanup of current TODOs
|
2005-07-12 20:34:24 +00:00 |
|
Chris PeBenito
|
20a22759a7
|
fix comments for templates to have same number of # as interfaces
|
2005-07-12 20:33:42 +00:00 |
|
Chris PeBenito
|
4051d15b62
|
fix xml
|
2005-07-11 19:15:54 +00:00 |
|
Chris PeBenito
|
ae9e2716c3
|
fix more TODOs. fix selinux.te to selinuxutil.te in optionals
|
2005-07-11 19:02:50 +00:00 |
|
Chris PeBenito
|
34bbe50d50
|
improve display of tunables and booleans
|
2005-07-11 14:41:21 +00:00 |
|
Chris PeBenito
|
4d7511ba57
|
add tun and bool descriptions
|
2005-07-11 13:49:15 +00:00 |
|
Chris PeBenito
|
249d461f23
|
initial global booleans and tunables support. also fix index
building, as it was being rebuilt for every module, rather then
once after all modules are loaded.
|
2005-07-08 21:02:59 +00:00 |
|
Chris PeBenito
|
a42ca7ebec
|
another round of TODO cleanup
|
2005-07-08 20:44:57 +00:00 |
|