RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

CVS patch from Dan Walsh. 

cvs needs dac_override when it tries to read shadow
This commit is contained in:
Chris PeBenito 2010-05-14 10:24:11 -04:00
parent bcc6e65421
commit 299db7080c
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
policy/modules/services/cvs.te
View File

@ -1,5 +1,5 @@
policy_module(cvs, 1.8.0) policy_module(cvs, 1.8.1)
######################################## ########################################
# #
@ -92,6 +92,7 @@ mta_send_mail(cvs_t)
# cjp: typeattribute doesnt work in conditionals yet # cjp: typeattribute doesnt work in conditionals yet
auth_can_read_shadow_passwords(cvs_t) auth_can_read_shadow_passwords(cvs_t)
tunable_policy(`allow_cvs_read_shadow',` tunable_policy(`allow_cvs_read_shadow',`
allow cvs_t self:capability dac_override;
auth_tunable_read_shadow(cvs_t) auth_tunable_read_shadow(cvs_t)
') ')