Should Yum and up2date understand SELinux roles
Tom Mitchell
mitch48 at sbcglobal.net
Mon Mar 29 23:37:50 UTC 2004
On Mon, Mar 29, 2004 at 09:09:39AM -0500, Daniel J Walsh wrote:
> Date: Mon, 29 Mar 2004 09:09:39 -0500
> From: Daniel J Walsh <dwalsh at redhat.com>
> To: "Fedora SELinux support list for users & developers." <fedora-selinux-list at redhat.com>
> Subject: Re: Should Yum and up2date understand SELinux roles
> Reply-To: "Fedora SELinux support list for users & developers." <fedora-selinux-list at redhat.com>
>
> Tom Mitchell wrote:
>
> >Should yum check "id" for sysadm_r role?
> >
....
> No if unlimitedUsers tunable is set the following rule needs to be added
> to rpm.te
>
> ifdef(`unlimitedUsers', `
> domain_auto_trans(staff_t, rpm_exec_t, rpm_t)
> ')
>
Thank you unlimitedUsers was set (will make the change and retest soon).
Will your small snip of policy be in a future version of rpm.te?
--
T o m M i t c h e l l
/dev/null the ultimate in secure storage.
More information about the fedora-selinux-list
mailing list