rpms/selinux-policy/devel policy-20070219.patch,1.28,1.29
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Tue Mar 20 23:04:51 UTC 2007
Author: dwalsh
Update of /cvs/dist/rpms/selinux-policy/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv26031
Modified Files:
policy-20070219.patch
Log Message:
* Tue Mar 20 2007 Dan Walsh <dwalsh at redhat.com> 2.5.9-3
- Add fusermount and mount_ntfs policy
policy-20070219.patch:
Rules.modular | 12 +
man/man8/ftpd_selinux.8 | 6
man/man8/httpd_selinux.8 | 17 --
man/man8/kerberos_selinux.8 | 9 -
man/man8/named_selinux.8 | 8
man/man8/nfs_selinux.8 | 2
man/man8/rsync_selinux.8 | 8
man/man8/samba_selinux.8 | 12 -
man/man8/ypbind_selinux.8 | 2
policy/flask/access_vectors | 4
policy/global_booleans | 2
policy/global_tunables | 92 ++++++++++-
policy/mls | 31 ++-
policy/modules/admin/acct.te | 1
policy/modules/admin/amtu.fc | 3
policy/modules/admin/amtu.if | 53 ++++++
policy/modules/admin/amtu.te | 56 ++++++
policy/modules/admin/consoletype.te | 8
policy/modules/admin/dmesg.te | 1
policy/modules/admin/firstboot.if | 18 ++
policy/modules/admin/kudzu.te | 1
policy/modules/admin/netutils.te | 3
policy/modules/admin/rpm.fc | 3
policy/modules/admin/rpm.if | 65 +++++++
policy/modules/admin/rpm.te | 2
policy/modules/admin/su.if | 6
policy/modules/admin/sudo.te | 5
policy/modules/admin/usermanage.te | 40 +++-
policy/modules/apps/games.fc | 1
policy/modules/apps/gnome.if | 26 +++
policy/modules/apps/gpg.fc | 2
policy/modules/apps/loadkeys.if | 44 +----
policy/modules/apps/mozilla.if | 1
policy/modules/kernel/corecommands.fc | 2
policy/modules/kernel/corecommands.if | 59 ++++---
policy/modules/kernel/corenetwork.if.in | 54 ++++++
policy/modules/kernel/corenetwork.te.in | 13 +
policy/modules/kernel/devices.if | 36 ++++
policy/modules/kernel/domain.if | 18 ++
policy/modules/kernel/domain.te | 23 ++
policy/modules/kernel/files.if | 81 ++++++++-
policy/modules/kernel/filesystem.if | 39 ++++
policy/modules/kernel/filesystem.te | 5
policy/modules/kernel/kernel.if | 23 ++
policy/modules/kernel/kernel.te | 2
policy/modules/kernel/mls.if | 20 ++
policy/modules/kernel/mls.te | 3
policy/modules/kernel/selinux.if | 38 ++++
policy/modules/kernel/storage.fc | 3
policy/modules/kernel/storage.if | 2
policy/modules/kernel/terminal.if | 2
policy/modules/kernel/terminal.te | 1
policy/modules/services/apache.fc | 23 ++
policy/modules/services/apache.if | 159 +++++++++++++++++++
policy/modules/services/apache.te | 53 +++++-
policy/modules/services/automount.te | 2
policy/modules/services/ccs.te | 12 +
policy/modules/services/consolekit.fc | 1
policy/modules/services/consolekit.te | 24 ++
policy/modules/services/cpucontrol.te | 1
policy/modules/services/cron.fc | 1
policy/modules/services/cron.if | 33 +--
policy/modules/services/cron.te | 43 ++++-
policy/modules/services/cvs.te | 1
policy/modules/services/cyrus.te | 5
policy/modules/services/dbus.if | 57 ++++++
policy/modules/services/dhcp.te | 2
policy/modules/services/djbdns.te | 5
policy/modules/services/dovecot.te | 5
policy/modules/services/fail2ban.fc | 4
policy/modules/services/fail2ban.if | 87 ++++++++++
policy/modules/services/fail2ban.te | 74 ++++++++
policy/modules/services/ftp.te | 5
policy/modules/services/hal.fc | 6
policy/modules/services/hal.te | 98 +++++++++++
policy/modules/services/inetd.if | 29 ---
policy/modules/services/inetd.te | 5
policy/modules/services/kerberos.if | 21 ++
policy/modules/services/kerberos.te | 2
policy/modules/services/mta.te | 2
policy/modules/services/networkmanager.te | 2
policy/modules/services/nis.if | 5
policy/modules/services/ntp.te | 1
policy/modules/services/pegasus.if | 18 ++
policy/modules/services/pegasus.te | 5
policy/modules/services/postfix.te | 2
policy/modules/services/ppp.te | 17 --
policy/modules/services/procmail.te | 1
policy/modules/services/pyzor.te | 3
policy/modules/services/radius.te | 6
policy/modules/services/ricci.te | 5
policy/modules/services/rpc.if | 5
policy/modules/services/rpc.te | 3
policy/modules/services/rsync.te | 1
policy/modules/services/samba.if | 44 +++++
policy/modules/services/samba.te | 24 ++
policy/modules/services/sasl.te | 12 +
policy/modules/services/smartmon.te | 1
policy/modules/services/spamassassin.te | 5
policy/modules/services/squid.fc | 2
policy/modules/services/squid.if | 22 ++
policy/modules/services/squid.te | 12 +
policy/modules/services/ssh.if | 39 ++++
policy/modules/services/ssh.te | 5
policy/modules/services/zabbix.fc | 4
policy/modules/services/zabbix.if | 87 ++++++++++
policy/modules/services/zabbix.te | 64 +++++++
policy/modules/system/application.fc | 1
policy/modules/system/application.if | 106 ++++++++++++
policy/modules/system/application.te | 14 +
policy/modules/system/authlogin.if | 84 ++++++++--
policy/modules/system/authlogin.te | 3
policy/modules/system/fstools.fc | 1
policy/modules/system/fstools.te | 1
policy/modules/system/fusermount.fc | 6
policy/modules/system/fusermount.if | 41 ++++
policy/modules/system/fusermount.te | 44 +++++
policy/modules/system/getty.te | 3
policy/modules/system/hostname.te | 14 +
policy/modules/system/init.if | 22 --
policy/modules/system/init.te | 26 ++-
policy/modules/system/ipsec.if | 100 ++++++++++++
policy/modules/system/ipsec.te | 9 -
policy/modules/system/iptables.te | 9 -
policy/modules/system/libraries.fc | 6
policy/modules/system/libraries.te | 20 ++
policy/modules/system/locallogin.te | 10 +
policy/modules/system/logging.if | 21 ++
policy/modules/system/logging.te | 4
policy/modules/system/lvm.te | 10 +
policy/modules/system/modutils.te | 7
policy/modules/system/mount.fc | 3
policy/modules/system/mount.if | 37 ++++
policy/modules/system/mount.te | 51 +++++-
policy/modules/system/netlabel.te | 3
policy/modules/system/selinuxutil.fc | 1
policy/modules/system/selinuxutil.if | 7
policy/modules/system/selinuxutil.te | 68 +++-----
policy/modules/system/udev.te | 6
policy/modules/system/unconfined.fc | 1
policy/modules/system/unconfined.te | 15 +
policy/modules/system/userdomain.if | 248 ++++++++++++++++--------------
policy/modules/system/userdomain.te | 40 +++-
policy/modules/system/xen.te | 26 +++
policy/support/obj_perm_sets.spt | 2
145 files changed, 2709 insertions(+), 484 deletions(-)
Index: policy-20070219.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy/devel/policy-20070219.patch,v
retrieving revision 1.28
retrieving revision 1.29
diff -u -r1.28 -r1.29
--- policy-20070219.patch 20 Mar 2007 20:42:32 -0000 1.28
+++ policy-20070219.patch 20 Mar 2007 23:04:49 -0000 1.29
@@ -3693,18 +3693,6 @@
+ sysnet_read_config(httpd_squid_script_t)
+ corenet_non_ipsec_sendrecv(httpd_squid_script_t)
+')
-diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/ssh.fc serefpolicy-2.5.9/policy/modules/services/ssh.fc
---- nsaserefpolicy/policy/modules/services/ssh.fc 2006-11-16 17:15:20.000000000 -0500
-+++ serefpolicy-2.5.9/policy/modules/services/ssh.fc 2007-03-20 10:20:32.000000000 -0400
-@@ -12,8 +12,6 @@
-
- /var/run/sshd\.init\.pid -- gen_context(system_u:object_r:sshd_var_run_t,s0)
-
--ifdef(`targeted_policy', `', `
- /usr/bin/ssh-agent -- gen_context(system_u:object_r:ssh_agent_exec_t,s0)
-
- HOME_DIR/\.ssh(/.*)? gen_context(system_u:object_r:ROLE_home_ssh_t,s0)
--')
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/ssh.if serefpolicy-2.5.9/policy/modules/services/ssh.if
--- nsaserefpolicy/policy/modules/services/ssh.if 2007-02-19 11:32:53.000000000 -0500
+++ serefpolicy-2.5.9/policy/modules/services/ssh.if 2007-03-20 10:20:32.000000000 -0400
More information about the fedora-cvs-commits
mailing list