gallery2 policy
John Griffiths
fedora01 at grifent.com
Fri Aug 31 17:27:02 UTC 2007
This is what audit2allow is showing now.
tail -n60 /var/log/messages | audit2allow -m local
module local 1.0;
require {
type unlabeled_t;
type default_t;
type boot_t;
type httpd_t;
type httpd_sys_script_t;
type lost_found_t;
class lnk_file read;
class dir getattr;
class file { read write getattr };
}
#============= httpd_sys_script_t ==============
allow httpd_sys_script_t unlabeled_t:file { read write };
#============= httpd_t ==============
allow httpd_t boot_t:dir getattr;
allow httpd_t default_t:file getattr;
allow httpd_t default_t:lnk_file read;
allow httpd_t lost_found_t:dir getattr;
It is getting worse.
Regards,
John
More information about the fedora-selinux-list
mailing list