Chris PeBenito
ef424c14d4
name_connect only on tcp_sockets
2005-07-20 17:10:07 +00:00
Chris PeBenito
9496fd5119
unconfined can name_connect to all ports
2005-07-20 17:08:07 +00:00
Chris PeBenito
d250634311
reorder kernel policy, add attributes for sysctl and proc entries. fix unconfined interface
2005-07-20 17:06:10 +00:00
Chris PeBenito
f82c6ac64c
bah typo
2005-07-20 15:08:33 +00:00
Chris PeBenito
0b28a23114
user home dirs were missing file type in targ policy
2005-07-20 15:06:49 +00:00
Chris PeBenito
1e3f610b3b
add missing dir and file perms for selinuxfs in unconfined
2005-07-20 14:57:13 +00:00
Chris PeBenito
689f6ddb35
fix typos and import some rules from NSA cvs to make targeted policy work
2005-07-20 14:25:24 +00:00
Chris PeBenito
474f43d13d
should actually try compiling first :x
2005-07-20 13:39:10 +00:00
Chris PeBenito
bd7e7a6417
missed a line
2005-07-20 13:37:18 +00:00
Chris PeBenito
a28f6db576
add in some rules from NSA CVS to make targeted policy work
2005-07-20 13:30:06 +00:00
Chris PeBenito
8c3f438f75
corenet was missing from unconfined
2005-07-19 20:38:26 +00:00
Chris PeBenito
892266ca76
more targeted policy fixes
2005-07-19 20:26:02 +00:00
Chris PeBenito
21f47732b1
add new netlink socket class
2005-07-19 20:25:42 +00:00
Chris PeBenito
ec848d247f
more fixes for targeted
2005-07-19 19:37:43 +00:00
Chris PeBenito
2ec4c9d38f
more cleanup
2005-07-19 18:40:31 +00:00
Chris PeBenito
8b0bbdda34
fixes for targeted policy
2005-07-19 18:40:19 +00:00
Chris PeBenito
391edeb577
fix assertions for framework
2005-07-18 20:17:21 +00:00
Chris PeBenito
a5f339f134
more cleanup in system
2005-07-18 18:31:49 +00:00
Chris PeBenito
9f103ce14b
fix to use context_template()
2005-07-18 14:25:05 +00:00
Chris PeBenito
3b6174a142
add missing context template
2005-07-15 20:54:24 +00:00
Chris PeBenito
50aca6d2f9
add raid (mdadm)
2005-07-15 20:45:26 +00:00
Chris PeBenito
d9fd8e7562
more pcmcia cleanup
2005-07-15 19:18:55 +00:00
Chris PeBenito
157c69416f
add macro to expand object class sets for use in require blocks
2005-07-15 15:53:54 +00:00
Chris PeBenito
50f6503452
* break up files_getattr_all_files into correct interfaces
...
* move stuff out of pcmcia into the appropriate modules
2005-07-15 15:17:57 +00:00
Chris PeBenito
f136a944c5
reorder in alpha order of type, for sanity purposes
2005-07-15 14:30:19 +00:00
Chris PeBenito
316553a275
add pcmcia
2005-07-14 20:58:57 +00:00
Chris PeBenito
e0d57fbcb1
add pcmcia
2005-07-14 20:57:17 +00:00
Chris PeBenito
c429cb5e26
fix up the xml
2005-07-14 20:02:53 +00:00
Chris PeBenito
11633bbaa8
add ipsec
2005-07-14 18:15:47 +00:00
Chris PeBenito
8125c93a07
more updates
2005-07-13 20:50:20 +00:00
Chris PeBenito
493d6c4adc
add nscd
2005-07-13 20:48:51 +00:00
Chris PeBenito
df00b2e235
* fix chroot exec interface
...
* more TODO cleanup
* move IPC out of generic domtrans interfaces
2005-07-13 18:29:08 +00:00
Chris PeBenito
25a0c61ffc
add distro tunables. expand on a few comments
2005-07-13 18:08:12 +00:00
Chris PeBenito
b24f35d8a3
more cleanup of current TODOs
2005-07-12 20:34:24 +00:00
Chris PeBenito
20a22759a7
fix comments for templates to have same number of # as interfaces
2005-07-12 20:33:42 +00:00
Chris PeBenito
4051d15b62
fix xml
2005-07-11 19:15:54 +00:00
Chris PeBenito
ae9e2716c3
fix more TODOs. fix selinux.te to selinuxutil.te in optionals
2005-07-11 19:02:50 +00:00
Chris PeBenito
34bbe50d50
improve display of tunables and booleans
2005-07-11 14:41:21 +00:00
Chris PeBenito
4d7511ba57
add tun and bool descriptions
2005-07-11 13:49:15 +00:00
Chris PeBenito
249d461f23
initial global booleans and tunables support. also fix index
...
building, as it was being rebuilt for every module, rather then
once after all modules are loaded.
2005-07-08 21:02:59 +00:00
Chris PeBenito
a42ca7ebec
another round of TODO cleanup
2005-07-08 20:44:57 +00:00
Chris PeBenito
4d0d4157f4
silly formatting fix
2005-07-08 19:44:12 +00:00
Chris PeBenito
c11958bd0f
support for global booleans
2005-07-08 14:22:17 +00:00
Chris PeBenito
acb668edf1
* Added support for layer summaries.
...
* Added a "Index" link on the menu to link to index.html
* Added links from the master interface & template lists
to their respective documentation in their module.
* Added links to "Interfaces" and "Templates" in modules
that have both.
* Added "Return" links after the "Interfaces" and "Templates"
section that go to the top of the module site.
2005-07-07 20:56:27 +00:00
Chris PeBenito
58c7777e14
tag for 20050707 release
2005-07-07 17:25:53 +00:00
Chris PeBenito
767266c2a7
update for 20050707 release
2005-07-07 17:19:13 +00:00
Chris PeBenito
dfa83e924c
add changelog
2005-07-07 17:13:17 +00:00
Chris PeBenito
e5f8060316
implement direct_sysadm_daemon
2005-07-07 15:25:28 +00:00
Chris PeBenito
1aa526281b
missing rules uncovered by sediff
2005-07-07 15:20:24 +00:00
Chris PeBenito
c98340cfeb
support for targeted policy
2005-07-06 20:28:29 +00:00