rpms/selinux-policy/F-7 policy-20070501.patch, 1.23, 1.24 selinux-policy.spec, 1.467, 1.468
Daniel J Walsh (dwalsh)
fedora-extras-commits at redhat.com
Tue Jun 19 17:59:50 UTC 2007
- Previous message (by thread): rpms/thttpd/F-7 thttpd.init,1.2,1.3 thttpd.spec,1.12,1.13
- Next message (by thread): rpms/gtk2/devel .cvsignore, 1.70, 1.71 gtk2.spec, 1.237, 1.238 sources, 1.78, 1.79
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dwalsh
Update of /cvs/extras/rpms/selinux-policy/F-7
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv4483
Modified Files:
policy-20070501.patch selinux-policy.spec
Log Message:
* Tue Jun 19 2007 Dan Walsh <dwalsh at redhat.com> 2.6.4-19
- Allow crond to domtrans to uncofined_t
policy-20070501.patch:
Index: policy-20070501.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/F-7/policy-20070501.patch,v
retrieving revision 1.23
retrieving revision 1.24
diff -u -r1.23 -r1.24
--- policy-20070501.patch 19 Jun 2007 17:14:21 -0000 1.23
+++ policy-20070501.patch 19 Jun 2007 17:59:44 -0000 1.24
@@ -3373,7 +3373,7 @@
# fcron wants an instant update of a crontab change for the administrator
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/cron.te serefpolicy-2.6.4/policy/modules/services/cron.te
--- nsaserefpolicy/policy/modules/services/cron.te 2007-05-07 14:50:57.000000000 -0400
-+++ serefpolicy-2.6.4/policy/modules/services/cron.te 2007-06-19 13:05:07.000000000 -0400
++++ serefpolicy-2.6.4/policy/modules/services/cron.te 2007-06-19 13:37:21.000000000 -0400
@@ -42,6 +42,9 @@
type cron_log_t;
logging_log_file(cron_log_t)
@@ -3564,6 +3564,20 @@
mrtg_append_create_logs(system_crond_t)
')
+@@ -471,6 +479,13 @@
+ sysstat_manage_log(system_crond_t)
+ ')
+
++ optional_policy(`
++ unconfined_dbus_send(crond_t)
++ unconfined_domain(crond_t)
++ unconfined_domain(system_crond_t)
++ userdom_priveleged_home_dir_manager(system_crond_t)
++ ')
++
+ ifdef(`TODO',`
+ dontaudit userdomain system_crond_t:fd use;
+
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/cups.fc serefpolicy-2.6.4/policy/modules/services/cups.fc
--- nsaserefpolicy/policy/modules/services/cups.fc 2007-05-07 14:50:57.000000000 -0400
+++ serefpolicy-2.6.4/policy/modules/services/cups.fc 2007-06-18 10:18:55.000000000 -0400
@@ -8056,7 +8070,7 @@
')
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/logging.if serefpolicy-2.6.4/policy/modules/system/logging.if
--- nsaserefpolicy/policy/modules/system/logging.if 2007-05-07 14:51:01.000000000 -0400
-+++ serefpolicy-2.6.4/policy/modules/system/logging.if 2007-06-18 10:18:55.000000000 -0400
++++ serefpolicy-2.6.4/policy/modules/system/logging.if 2007-06-19 13:33:17.000000000 -0400
@@ -223,6 +223,25 @@
########################################
Index: selinux-policy.spec
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/F-7/selinux-policy.spec,v
retrieving revision 1.467
retrieving revision 1.468
diff -u -r1.467 -r1.468
--- selinux-policy.spec 19 Jun 2007 17:14:21 -0000 1.467
+++ selinux-policy.spec 19 Jun 2007 17:59:44 -0000 1.468
@@ -17,7 +17,7 @@
Summary: SELinux policy configuration
Name: selinux-policy
Version: 2.6.4
-Release: 18%{?dist}
+Release: 19%{?dist}
License: GPL
Group: System Environment/Base
Source: serefpolicy-%{version}.tgz
@@ -360,6 +360,9 @@
%endif
%changelog
+* Tue Jun 19 2007 Dan Walsh <dwalsh at redhat.com> 2.6.4-19
+- Allow crond to domtrans to uncofined_t
+
* Tue Jun 19 2007 Dan Walsh <dwalsh at redhat.com> 2.6.4-18
- Fix udev for xen again
- Allow cron to set loginuid
- Previous message (by thread): rpms/thttpd/F-7 thttpd.init,1.2,1.3 thttpd.spec,1.12,1.13
- Next message (by thread): rpms/gtk2/devel .cvsignore, 1.70, 1.71 gtk2.spec, 1.237, 1.238 sources, 1.78, 1.79
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list