rpms
/
selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity
1,036 Commits 8 Branches 90 Tags 36 MiB
Commit Graph

847 Commits

Author SHA1 Message Date
Daniel J Walsh 959ab94100 - Allow svirt to manage pci and other sysfs device data 2009-05-05 20:48:39 +00:00
Daniel J Walsh 0e31a0e8ca - Fix package selection handling 2009-05-04 19:37:29 +00:00
Daniel J Walsh c32d79e2c3 - Fix /sbin/ip6tables-save context 
- Allod udev to transition to mount
- Fix loading of mls policy file
 2009-05-04 18:20:29 +00:00
Daniel J Walsh 5dd89f3819 - Fix /sbin/ip6tables-save context 2009-05-02 11:52:13 +00:00
Daniel J Walsh 37ebfc9102 - Add shorewall policy 2009-04-30 22:22:00 +00:00
Daniel J Walsh 21b13fca45 - Additional rules for fprintd and sssd 2009-04-30 11:51:07 +00:00
Daniel J Walsh 40d8f60dd7 - Allow nsplugin to unix_read unix_write sem for unconfined_java 2009-04-28 20:09:21 +00:00
Daniel J Walsh b3ac4a052b - Fix uml files to be owned by users 2009-04-28 15:49:42 +00:00
Daniel J Walsh e080bbd4f6 - Fix Upgrade path to install unconfineduser.pp when unocnfined package is 
3.0.0 or less
 2009-04-28 15:13:35 +00:00
Daniel J Walsh b11dbbb323 - Allow confined users to manace virt_content_t, since this is home dir 
content
- Allow all domains to read rpm_script_tmp_t which is what shell creates on
    redirection
 2009-04-27 18:56:58 +00:00
Daniel J Walsh b0991a2dfd - Fix labeling on /var/lib/misc/prelink* 
- Allow xserver to rw_shm_perms with all x_clients
- Allow prelink to execute files in the users home directory
 2009-04-27 14:45:15 +00:00
Daniel J Walsh 89c9c9ae6a - Allow initrc_t to delete dev_null 
- Allow readahead to configure auditing
- Fix milter policy
- Add /var/lib/readahead
 2009-04-24 19:28:35 +00:00
Daniel J Walsh eaaf2ab923 - Allow initrc_t to delete dev_null 
- Allow readahead to configure auditing
- Fix milter policy
- Add /var/lib/readahead
 2009-04-24 17:50:36 +00:00
Daniel J Walsh dac8380cd0 - Allow initrc_t to delete dev_null 
- Allow readahead to configure auditing
 2009-04-24 13:17:08 +00:00
Daniel J Walsh db0dafaaeb - Update to latest milter code from Paul Howarth 2009-04-24 11:53:55 +00:00
Daniel J Walsh cd0a396413 - Update to latest milter code from Paul Howarth 2009-04-24 11:42:43 +00:00
Daniel J Walsh 5ce1c49771 - Additional perms for readahead 2009-04-24 04:09:22 +00:00
Daniel J Walsh 4d5adb716e - Allow pulseaudio to acquire_svc on session bus 
- Fix readahead labeling
 2009-04-23 14:48:46 +00:00
Daniel J Walsh 3c498a780b - Allow sshd to read var_lib symlinks for freenx 2009-04-22 19:18:30 +00:00
Daniel J Walsh a32a1594b6 - Allow nsplugin unix_read and write on users shm and sem 
- Allow sysadm_t to execute su
 2009-04-21 20:31:51 +00:00
Daniel J Walsh d982e7e091 - Fixes for podsleuth 2009-04-18 12:13:36 +00:00
Daniel J Walsh dc00fc32b6 *** empty log message *** 2009-04-17 14:19:17 +00:00
Daniel J Walsh 6203f422e2 - Allow cupsd_t to create link files in print_spool_t 2009-04-16 15:14:26 +00:00
Daniel J Walsh 4a0aac139f - Allow audioentroy to read etc files 2009-04-15 12:03:09 +00:00
Daniel J Walsh 685032cae2 - Add fail2ban_var_lib_t 
- Fixes for devicekit_power_t
 2009-04-14 11:02:35 +00:00
Daniel J Walsh d4af172a64 - Separate out the ucnonfined user from the unconfined.pp package 2009-04-11 12:30:22 +00:00
Daniel J Walsh 90e4193775 - Make sure unconfined_java_t and unconfined_mono_t create user_tmpfs_t. 2009-04-08 13:18:20 +00:00
Daniel J Walsh 25a47636ae - Upgrade to latest upstream 
- Allow devicekit_disk sys_rawio
 2009-04-08 00:59:46 +00:00
Daniel J Walsh 510c2a3987 - Dontaudit binds to ports < 1024 for named 
- Upgrade to latest upstream
 2009-04-06 17:07:59 +00:00
Daniel J Walsh 04b6828096 - Allow podsleuth to use tmpfs files 2009-04-03 21:27:39 +00:00
Daniel J Walsh 80beeee40e - Add customizable_types for svirt 2009-04-03 19:25:21 +00:00
Daniel J Walsh f49c57d5e6 - Allow setroubelshoot exec* privs to prevent crash from bad libraries 
- add cpufreqselector
 2009-04-03 14:45:58 +00:00
Daniel J Walsh 90ea5b3fef - Dontaudit listing of /root directory for cron system jobs 2009-04-02 15:23:58 +00:00
Daniel J Walsh 3434a9be73 - Fix missing ld.so.cache label 2009-03-30 16:06:48 +00:00
Daniel J Walsh c0158a8c68 - Add label for ~/.forward and /root/.forward 2009-03-27 19:48:17 +00:00
Daniel J Walsh 6130d52b7c - Fixes for svirt 2009-03-27 00:01:52 +00:00
Daniel J Walsh 9ca87fc9d8 - Fixes to allow svirt read iso files in homedir 2009-03-24 19:45:02 +00:00
Daniel J Walsh ec9800856c - Add xenner and wine fixes from mgrepl 2009-03-24 14:33:05 +00:00
Daniel J Walsh 5dce3c12f7 - Add xenner and wine fixes from mgrepl 2009-03-20 18:42:38 +00:00
Daniel J Walsh bfc78b6af9 - Allow mdadm to read/write mls override 2009-03-18 19:34:57 +00:00
Daniel J Walsh 095146a89d - Change to svirt to only access svirt_image_t 2009-03-17 19:52:35 +00:00
Daniel J Walsh d4b8dcf968 - Fix libvirt policy 2009-03-16 16:02:20 +00:00
Daniel J Walsh b12011f2ab - Upgrade to latest upstream 2009-03-12 15:48:51 +00:00
Daniel J Walsh c240b604f6 - Fixes for iscsid and sssd 
- More cleanups for upgrade from F10 to Rawhide.
 2009-03-11 20:25:16 +00:00
Daniel J Walsh e72f55aac0 - Add pulseaudio, sssd policy 
- Allow networkmanager to exec udevadm
 2009-03-09 21:58:08 +00:00
Daniel J Walsh 0c34c69a38 - Add pulseaudio context 2009-03-09 16:18:51 +00:00
Daniel J Walsh a67a1c12aa - Upgrade to latest patches 2009-03-05 21:05:47 +00:00
Daniel J Walsh 0a03cce02d - Fixes for libvirt 2009-03-04 19:41:16 +00:00
Daniel J Walsh 8c3a31a48a - Update to Latest upstream 2009-03-03 20:10:30 +00:00
Daniel J Walsh 496752533e - Further confinement of qemu images via svirt 2009-02-27 21:22:47 +00:00