rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity
5,187 Commits 8 Branches 93 Tags 37 MiB
f8d85476fd
Commit Graph

5187 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel J Walsh
993c27dacb - Allow amanada to create data files 2008-05-07 19:10:59 +00:00
Daniel J Walsh
da67f18558 - Remove dmesg boolean 
- Allow user domains to read/write game data
 2008-05-06 20:43:08 +00:00
Daniel J Walsh
58d7ee7ef1 - Remove dmesg boolean 
- Allow user domains to read/write game data
 2008-05-06 18:15:03 +00:00
Daniel J Walsh
6c25b428ce - Remove dmesg boolean 
- Allow user domains to read/write game data
 2008-05-06 17:01:42 +00:00
Chris PeBenito
d923d54c08 trunk: X application data class from Eamon Walsh and Ted Toth. 2008-05-06 14:37:05 +00:00
Chris PeBenito
a68c30f58a trunk: add secadm and auditadm bits to appconfig files now that they are available beyond the MLS policy. 2008-04-30 18:55:41 +00:00
Daniel J Walsh
86881dd93f - Change unconfined_t to transition to unconfined_mono_t when running mono 
- Change XXX_mono_t to transition to XXX_t when executing bin_t files, so
    gnome-do will work
 2008-04-29 16:05:11 +00:00
Chris PeBenito
e9c6cda7da trunk: Move user roles into individual modules. 2008-04-29 13:58:34 +00:00
Daniel J Walsh
2d8ff5157a - Remove old booleans from targeted-booleans.conf file 2008-04-28 21:24:59 +00:00
Daniel J Walsh
b4e933120a - Don't run crontab from unconfined_t 2008-04-24 21:08:32 +00:00
Daniel J Walsh
ef5e600999 - Don't run crontab from unconfined_t 2008-04-24 19:41:22 +00:00
Daniel J Walsh
eb11e7fc27 - Change etc files to config files to allow users to read them 2008-04-23 19:50:45 +00:00
Daniel J Walsh
4b1d56da14 - Change etc files to config files to allow users to read them 2008-04-23 14:15:54 +00:00
Chris PeBenito
a0647afa0c trunk: add missing mplayer_etc_t require in role template. 2008-04-21 12:47:09 +00:00
Chris PeBenito
7e11b74087 trunk: make hald_log_t a log file. 2008-04-18 16:04:15 +00:00
Chris PeBenito
f12302af92 trunk: hal xml doc fix pointed out by Rob Myers. 2008-04-18 15:55:03 +00:00
Chris PeBenito
2083db2e40 trunk: Cryptsetup runs shell scripts. Patch from Martin Orr. 2008-04-18 15:32:03 +00:00
Chris PeBenito
c07f9ccd18 trunk: Add file for enabling policy capabilities. 2008-04-18 14:21:01 +00:00
Chris PeBenito
75da4b8ad3 trunk: Patch to fix leaky interface/template call depth calculator from Vaclav Ovsik. 2008-04-18 12:57:01 +00:00
Daniel J Walsh
a6a82aec79 - dontaudit mrtg reading /proc 
- Allow iscsi to signal itself
- Allow gnomeclock sys_ptrace
 2008-04-15 20:27:09 +00:00
Daniel J Walsh
b912a6e25d - dontaudit mrtg reading /proc 
- Allow iscsi to signal itself
- Allow gnomeclock sys_ptrace
 2008-04-15 20:26:17 +00:00
Daniel J Walsh
5896bad9cf 2008-04-14 20:01:48 +00:00
Daniel J Walsh
bb36d75512 2008-04-11 18:58:08 +00:00
Daniel J Walsh
06686c20a2 - Allow dhcpd to read kernel network state 2008-04-10 19:45:47 +00:00
Daniel J Walsh
41625a26ea - Label /var/run/gdm correctly 
- Fix unconfined_u user creation
 2008-04-10 14:37:57 +00:00
Daniel J Walsh
254e3c7af3 - Allow transition from initrc_t to getty_t 2008-04-08 20:14:36 +00:00
Daniel J Walsh
5a576e06f0 - Allow passwd to communicate with user sockets to change gnome-keyring 2008-04-08 19:17:28 +00:00
Daniel J Walsh
7f851af8d9 - Fix initial install 2008-04-08 03:17:46 +00:00
Daniel J Walsh
c3c4a525c2 - 2008-04-06 12:06:47 +00:00
Daniel J Walsh
08f4abfd6d - Allow radvd to use fifo_file 
- dontaudit setfiles reading links
- allow semanage sys_resource
- add allow_httpd_mod_auth_ntlm_winbind boolean
- Allow privhome apps including dovecot read on nfs and cifs home dirs if
    the boolean is set
 2008-04-05 12:01:36 +00:00
Daniel J Walsh
27943de6a0 - Allow radvd to use fifo_file 
- dontaudit setfiles reading links
- allow semanage sys_resource
- add allow_httpd_mod_auth_ntlm_winbind boolean
- Allow privhome apps including dovecot read on nfs and cifs home dirs if
    the boolean is set
 2008-04-05 10:39:06 +00:00
Chris PeBenito
8152a78836 trunk: 7 patches from dan. 2008-04-04 17:08:34 +00:00
Chris PeBenito
c565b44f9c trunk: release 2008-04-02 18:44:07 +00:00
Chris PeBenito
0a14f3ae09 trunk: bump module version numbers for release. 2008-04-02 16:04:43 +00:00
Chris PeBenito
2c12b471ad trunk: add core xselinux support. 2008-04-01 20:23:23 +00:00
Daniel J Walsh
c66f2bc425 - Allow nsplugin to read /etc/mozpluggerrc, user_fonts 
- Allow syslog to manage innd logs.
- Allow procmail to ioctl spamd_exec_t
 2008-04-01 09:21:21 +00:00
Daniel J Walsh
7b9c57c8ba - Allow initrc_t to dbus chat with consolekit. 2008-03-30 05:41:15 +00:00
Daniel J Walsh
294ea7a213 - Allow initrc_t to dbus chat with consolekit. 2008-03-29 18:36:09 +00:00
Daniel J Walsh
e54cb216a8 - Additional access for nsplugin 
- Allow xdm setcap/getcap until pulseaudio is fixed
 2008-03-28 22:07:45 +00:00
Daniel J Walsh
478aeeca6b - Additional access for nsplugin 
- Allow xdm setcap/getcap until pulseaudio is fixed
 2008-03-28 21:09:45 +00:00
Chris PeBenito
e828954c63 trunk: 4 patches from dan. 2008-03-27 15:20:16 +00:00
Daniel J Walsh
f70afcdd9e - Allow mount to mkdir on tmpfs 
- Allow ifconfig to search debugfs
 2008-03-26 06:17:27 +00:00
Daniel J Walsh
bf3d39e959 - Fix file context for MATLAB 
- Fixes for xace
 2008-03-21 23:24:11 +00:00
Chris PeBenito
9377a3e59c trunk: fix winbind socket connection interface for default location of the sock_file. 2008-03-21 14:18:13 +00:00
Chris PeBenito
9e8c3aa651 trunk: add type transition to fix mysql socket creation. 2008-03-21 14:16:17 +00:00
Daniel J Walsh
5ea3f10caf - Allow stunnel to transition to inetd children domains 
- Make unconfined_dbusd_t an unconfined domain
 2008-03-20 16:11:16 +00:00
Chris PeBenito
2ed4f5aedf trunk: small fixes for gentoo system. 2008-03-20 14:55:17 +00:00
Daniel J Walsh
94b7be909e 2008-03-18 21:10:02 +00:00
Daniel J Walsh
ba9e5e8244 - Fixes for qemu/virtd 2008-03-17 21:42:05 +00:00
Daniel J Walsh
954e7c7340 - Fix bug in mozilla policy to allow xguest transition 
- This will fix the
 2008-03-17 21:40:53 +00:00