bf54d5be44
Module version bumps for c586c1b, dcbb332, 4c05dff, 84ce9c3, 2b012ba, and 1868383.
2010-03-29 09:21:59 -04:00
ad0071bbe4
Tweaks on pulseaudio 1868383, ksmtuned d279dd6, and smokeping f3c346c.
2010-03-29 09:19:40 -04:00
18683835fd
pulseaudio patch from Dan Walsh
...
Fixed template where it should have been interface
Replaced read_home and manage_home interfaces with read_home_files, manage_home_files and reduced access
Removed admin_dir reference
Replaced rtkit_daemon_system_domain with rtkit_scheduled
Fixed style / spacing issues
2010-03-29 08:41:45 -04:00
df29613c72
Module version bump for 75c8a69.
2010-03-22 13:51:35 -04:00
75c8a691ee
gitosis read/manage lib interfaces from Dan Walsh
...
Only giving manage_files_pattern for gitosis_manage_lib_files
2010-03-22 13:48:39 -04:00
ce693cbbec
Module version bump for ae07c9e.
2010-03-16 14:33:43 -04:00
ae07c9e2e8
Screen needs to setattr on user_ttydevice_t from Dan Walsh
2010-03-16 13:36:45 -04:00
ba1c45337b
Module version bump for 3137148.
2010-03-16 13:10:14 -04:00
31371480b0
Run interface for ptchown from Dan Walsh
2010-03-16 11:34:58 -04:00
5dac50953f
Module version bump for cf3da95.
2010-03-08 10:02:34 -05:00
cf3da95084
Allow cdrecord_t to execute bin_t from Dan Walsh
...
growisofs executes mkisofs
2010-03-08 09:34:37 -05:00
4fd0889171
Java patch from Dan Walsh.
2010-02-19 11:21:38 -05:00
1e0f483a18
Mono patch from Dan Walsh.
2010-02-19 10:42:43 -05:00
a777957b49
Rename qemu_unconfined_t to unconfined_qemu_t.
2010-02-19 10:27:09 -05:00
8a1c9c505f
Rearrage qemu.if.
2010-02-19 10:16:28 -05:00
72295e93e1
Qemu patch from Dan Walsh.
2010-02-19 10:15:19 -05:00
4796d07ee0
Wine patch from Dan Walsh.
2010-02-19 09:17:51 -05:00
6f30d7e770
Pulseaudio patch from Dan Walsh.
2010-02-16 15:13:08 -05:00
c3c753f786
Remove concept of user from terminal module interfaces dealing with ptynode and ttynode since these attributes are not specific to users.
2010-02-11 14:20:10 -05:00
46b03739ac
Seunshare patch from Dan Walsh.
2009-12-01 10:31:28 -05:00
d7776f58c2
Screen patch from Dan Walsh.
2009-12-01 10:31:17 -05:00
6394ea6143
Podsleuth patch from Dan Walsh.
2009-12-01 10:30:50 -05:00
b77daab0ed
Mozilla patch from Dan Walsh.
2009-12-01 10:30:30 -05:00
36ded4bd36
GPG patch from Dan Walsh.
2009-12-01 10:30:07 -05:00
962d6fb9b0
Calamaris patch from Dan Walsh.
2009-12-01 10:29:51 -05:00
ed3a1f559a
bump module versions for release.
2009-11-17 10:05:56 -05:00
a1a45de06e
reorganize a92ee50
2009-10-22 10:35:45 -04:00
a92ee50126
Implement screen-locking feature.
...
Signed-off-by: Dominick Grift <domg472@gmail.com>
Signed-off-by: Chris PeBenito <cpebenito@tresys.com>
2009-10-22 10:33:05 -04:00
4be8dd10b9
add seunshare from dan.
2009-09-28 15:40:06 -04:00
1d3b9e384c
clean up xscreensaver.
2009-09-15 09:41:42 -04:00
31f9c109c1
SELinux xscreensaver policy support
...
Hello
This a patch for adding xscreensaver policy.
I think it need a specific policy because of the auth_domtrans_chk_passwd.
cordially
Signed-off-by: LABBE Corentin <corentin.labbe@geomatys.fr>
2009-09-15 08:46:28 -04:00
dbed95369c
add gitosis from miroslav grepl.
2009-09-03 09:52:08 -04:00
634a13c21f
cpufreqselector patch from dan.
2009-09-03 09:15:17 -04:00
f6137171f3
add an additional vmware host program.
2009-09-03 08:56:58 -04:00
6fdef06522
screen patch from dan.
2009-09-03 08:49:26 -04:00
72b834ccb0
remove stale screen_dir_t references
...
The screen_dir_t was made an alias of the screen_var_run_t type.
Remove the remaining references to this type.
2009-09-03 08:39:42 -04:00
ca7fa520e7
gpg patch from dan.
...
gpg sends sigstop and signull
Reads usb devices
Can encrypts users content in /tmp and the homedir, as well as on NFS and cifs
2009-09-03 08:23:18 -04:00
93be4ba581
Webalizer does not list inotify, this was caused by leaked file descriptors in either dbus or cron. Both of which have been cleaned up.
2009-09-02 09:10:30 -04:00
a4b6385b9d
cdrecord patch from dan.
2009-09-01 09:22:40 -04:00
1a79193449
awstats patch from dan.
2009-09-01 08:59:24 -04:00
aac56b12b7
add ptchown policy from dan.
2009-08-31 10:21:01 -04:00
a3dd1499ef
pulseaudio patch from dan.
2009-08-31 10:07:57 -04:00
aaff2fcfcd
module version number bump for tun patches
2009-08-31 09:17:31 -04:00
9dc3cd1635
refpol: Policy for the new TUN driver access controls
...
Add policy for the new TUN driver access controls which allow policy to
control which domains have the ability to create and attach to TUN/TAP
devices. The policy rules for creating and attaching to a device are as
shown below:
# create a new device
allow domain_t self:tun_socket { create };
# attach to a persistent device (created by tunlbl_t)
allow domain_t tunlbl_t:tun_socket { relabelfrom };
allow domain_t self:tun_socket { relabelto };
Further discussion can be found on this thread:
* http://marc.info/?t=125080850900002&r=1&w=2
Signed-off-by: Paul Moore <paul.moore@hp.com>
2009-08-31 08:36:06 -04:00
4279891d1f
patch from Eamon Walsh to remove useage of deprecated xserver interfaces.
2009-08-28 13:40:29 -04:00
b2648249d9
Fix unconfined_r use of unconfined_java_t.
...
The unconfined role is running java in the unconfined_java_t. The current
policy only has a domtrans interface, so the unconfined_java_t domain is not
added to unconfined_r. Add a run interface and change the unconfined module
to use this new interface.
2009-08-17 13:19:26 -04:00
9570b28801
module version number bump for release 2.20090730 that was mistakenly omitted.
2009-08-05 10:59:21 -04:00
0c89174f7f
pull most of fedora changes to samba.
2009-07-29 14:40:34 -04:00
91550027de
vmware patch from dan.
2009-07-28 11:37:34 -04:00
c7ae9ae1c8
Merge branch 'master' of ssh://oss.tresys.com/home/git/refpolicy
2009-07-28 08:00:03 -04:00
Chris PeBenito
Jeremy Solt
Chris PeBenito
Dominick Grift
corentin.labbe
Paul Moore