RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

patch to add needed permissions to the authlogin module 

This patch adds some needed permissions to the chkpwd_t domain
in policy/modules/system/authlogin.te.
This commit is contained in:
Guido Trentalancia 2011-02-16 07:27:51 +01:00 committed by Chris PeBenito
parent b529a29264
commit baa87c9324
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
policy/modules/system/authlogin.te
View File

@ -83,11 +83,13 @@ logging_log_file(wtmp_t)
allow chkpwd_t self:capability { dac_override setuid };
dontaudit chkpwd_t self:capability sys_tty_config;
allow chkpwd_t self:process getattr;
allow chkpwd_t self:process { getattr signal };
allow chkpwd_t shadow_t:file read_file_perms;
files_list_etc(chkpwd_t)
kernel_read_crypto_sysctls(chkpwd_t)
# is_selinux_enabled
kernel_read_system_state(chkpwd_t)