Miroslav Grepl
9238df00c5
- Turn on mediawiki policy
...
- kdump leaks kdump_etc_t to ifconfig, add dontaudit
- uux needs to transition to uucpd_t
- More init fixes relabels man,faillog
- Remove maxima defs in libraries.fc
- insmod needs to be able to create tmpfs_t files
- ping needs setcap
2010-11-12 13:47:15 +01:00
Dan Walsh
fc9bf2f03d
- Add conflicts for dirsrv package
2010-11-09 07:55:52 -05:00
Dan Walsh
06262c1566
- Update to upstream
...
- Add vlock policy
2010-11-05 12:40:07 -04:00
Dan Walsh
c52856e6d8
- Fix sandbox to work on nfs homedirs
...
- Allow cdrecord to setrlimit
- Allow mozilla_plugin to read xauth
- Change label on systemd-logger to syslogd_exec_t
- Install dirsrv policy from dirsrv package
2010-11-05 07:32:45 -04:00
Dan Walsh
9754f472c7
- Allow NetworkManager to read openvpn_etc_t
...
- Dontaudit hplip to write of /usr dirs
- Allow system_mail_t to create /root/dead.letter as mail_home_t
- Add vdagent policy for spice agent daemon
2010-11-01 14:37:25 -04:00
Dan Walsh
12084526fe
- Allow sandbox_x_domains to work with nfs/cifs/fusefs home dirs.
2010-10-18 13:45:08 -04:00
Dan Walsh
4da7659056
- Allow sandbox_x_domains to work with nfs/cifs/fusefs home dirs.
2010-10-18 13:18:55 -04:00
Dan Walsh
0daa8b731a
- Fix fusefs handling
...
- Do not allow sandbox to manage nsplugin_rw_t
- Allow mozilla_plugin_t to connecto its parent
- Allow init_t to connect to plymouthd running as kernel_t
- Add mediawiki policy
- dontaudit sandbox sending signals to itself. This can happen when they are running at different mcs.
- Disable transition from dbus_session_domain to telepathy for F14
- Allow boinc_project to use shm
- Allow certmonger to search through directories that contain certs
- Allow fail2ban the DAC Override so it can read log files owned by non root users
2010-10-07 09:19:43 -04:00
Dan Walsh
ea3b7b5dff
- Add vnstat policy
...
- allow libvirt to send audit messages
- Allow chrome-sandbox to search nfs_t
2010-09-16 18:00:00 -04:00
Dan Walsh
a0e8efd42c
- Update to upstream
2010-09-13 16:17:15 -04:00
Dan Walsh
30a7d17203
- Add policy for ajaxterm
2010-09-09 09:58:12 -04:00
Dan Walsh
6578cf7413
- More access needed for devicekit
...
- Add dbadm policy
2010-08-30 11:58:36 -04:00
Dan Walsh
ba77266a14
- Merge with upstream
2010-08-26 20:35:53 -04:00
Dan Walsh
922cd61e83
* Tue Aug 10 2010 Dan Walsh <dwalsh@redhat.com> 3.8.8-12
...
- Fix devicekit_power bug
- Allow policykit_auth_t more access.
2010-08-11 07:55:04 -04:00
Daniel J Walsh
8d55a410dc
- New permissions for syslog
...
- New labels for /lib/upstart
2010-07-26 20:32:18 +00:00
Daniel J Walsh
0f2ae00c61
- Update to upstream
2010-07-15 13:11:25 +00:00
Daniel J Walsh
74e6a69ce9
-Update to upstream
2010-06-28 21:27:05 +00:00
Daniel J Walsh
7c727a891e
- Add Zarafa policy
2010-06-16 20:19:22 +00:00
Daniel J Walsh
244b4526c6
- Cleanup of aiccu policy
...
- initial mock policy
2010-06-16 18:25:47 +00:00
Daniel J Walsh
f2403c5b4f
- Cleanup of aiccu policy
...
- initial mock policy
2010-06-11 15:39:46 +00:00
Daniel J Walsh
bca242c772
- Add xdm_var_run_t to xserver_stream_connect_xdm
...
- Add cmorrord and mpd policy from Miroslav Grepl
2010-06-02 19:36:11 +00:00
Daniel J Walsh
bc4089cfaa
- Update to upstream
2010-05-26 21:15:42 +00:00
Daniel J Walsh
a72c31df34
- Update to upstream
2010-03-18 15:47:35 +00:00
Daniel J Walsh
add957370e
- Merge with upstream
2010-02-16 22:10:14 +00:00
Daniel J Walsh
487de6f251
- Add icecast policy
...
- Cleanup spec file
2010-02-08 22:06:23 +00:00
Daniel J Walsh
30c21992cb
- Add mcelog policy
2010-02-03 20:52:58 +00:00
Daniel J Walsh
a62c6405cc
- Lots of fixes found in F12
2010-02-02 16:41:03 +00:00
Daniel J Walsh
89ad5ea38f
- Turn on puppet policy
...
- Update to dgrift git policy
2010-01-14 21:49:18 +00:00
Daniel J Walsh
7723ea3a29
- Update to upstream
2010-01-09 14:08:52 +00:00
Daniel J Walsh
e2f53dfaec
- Cleanups from dgrift
2009-12-23 13:02:27 +00:00
Daniel J Walsh
550cc5f4f4
- Add back xserver_manage_home_fonts
2009-12-22 17:25:13 +00:00
Daniel J Walsh
7d40583319
- Dontaudit sandbox trying to read nscd and sssd
2009-12-21 22:53:07 +00:00
Daniel J Walsh
194b53e038
- Fixes for abrt calls
2009-12-17 19:34:18 +00:00
Daniel J Walsh
9c90ba7e8e
- Add tgtd policy
2009-12-16 13:30:38 +00:00
Daniel J Walsh
755e2d6934
- Add tgtd policy
2009-12-11 20:18:55 +00:00
Daniel J Walsh
9eef358da0
- Update to upstream release
2009-12-10 19:20:14 +00:00
Daniel J Walsh
ee88b050c5
- Add asterisk policy back in
2009-11-20 16:55:54 +00:00
Daniel J Walsh
32594a1112
- Allow vpnc request the kernel to load modules
2009-10-02 15:15:36 +00:00
Daniel J Walsh
d976a83a17
- Allow cupsd_config to read user tmp
...
- Allow snmpd_t to signal itself
- Allow sysstat_t to makedir in sysstat_log_t
2009-09-30 17:37:44 +00:00
Daniel J Walsh
5b96313949
- Update rhcs policy
2009-09-29 19:47:31 +00:00
Daniel J Walsh
8b10e3abd7
- Update rhcs policy
2009-09-29 12:38:58 +00:00
Daniel J Walsh
69290fd9df
- Update to upstream
...
- Dontaudit nsplugin search /root
- Dontaudit nsplugin sys_nice
2009-09-16 17:50:32 +00:00
Daniel J Walsh
6b7b0c1cdc
- Fix devicekit_disk_t to getattr on all domains sockets and fifo_files
...
- Conflicts seedit (You can not use selinux-policy-targeted and seedit at
the same time.)
2009-09-15 18:26:13 +00:00
Daniel J Walsh
ab8f807545
- More fixes
2009-09-09 21:08:02 +00:00
Daniel J Walsh
b8498d1e5b
- More fixes
2009-09-08 23:55:31 +00:00
Daniel J Walsh
42f9effee7
- Add back in unconfined.pp and unconfineduser.pp
...
- Add Sandbox unshare
2009-08-26 20:19:02 +00:00
Daniel J Walsh
c5f5b5dbcb
- Add ABRT policy
2009-08-21 22:58:28 +00:00
Daniel J Walsh
40243d944f
- Allow cupsd_config_t to be started by dbus
...
- Add smoltclient policy
2009-08-18 22:43:34 +00:00
Daniel J Walsh
cbedd06c12
- Add kdump policy for Miroslav Grepl
...
- Turn off execstack boolean
2009-08-12 20:09:21 +00:00
Daniel J Walsh
867473ac62
- Add kdump policy for Miroslav Grepl
...
- Turn off execstack boolean
2009-08-10 18:22:10 +00:00