ec280b3209
Silence spurious udp_socket listen denials.
2011-08-23 08:21:40 -04:00
adddcf93f6
Fix unexpanded MLS/MCS fields in monolithic seusers file.
2011-08-12 08:28:37 -04:00
81eefe7ce9
Type transition fix in Postgresql database objects from KaiGai Kohei.
2011-07-29 08:42:53 -04:00
f1aed68ac3
Support for file context path substitutions (file_contexts.subs).
...
Install file_contexts.subs_dist out of Refpolicy. This is TYPE-agnostic
so the file goes in config/. Populate the file with current substitutions.
2011-07-28 13:12:28 -04:00
f342e50500
Update VERSION and Changelog for release.
2011-07-26 08:15:53 -04:00
3cbc972771
Fix role declaration to handle new roleattribute requirements.
2011-07-25 12:10:05 -04:00
ee4bdf2959
Rename audioentropy module to entropyd due to haveged support.
2011-07-25 08:46:03 -04:00
004e272212
Module version bump and changelog for haveged support from Sven Vermeulen.
2011-07-25 08:43:51 -04:00
a29c7b86e1
Module version bump and Changelog for auth file patches from Matthew Ife.
2011-07-18 13:48:05 -04:00
ccf8bdea90
Add agent support to zabbix from Sven Vermeulen.
2011-06-15 14:11:14 -04:00
003dbe0c66
Cyrus file context update for Gentoo from Corentin Labbe.
2011-06-08 08:51:55 -04:00
78b1d1182c
Merge ncftool from Fedora.
2011-06-07 09:14:53 -04:00
8c3e30f913
Module version bump and changelog for Fedora modules.
2011-05-24 09:12:43 -04:00
2983a08467
Module version bump and changelog for Portage updates from Sven Vermeulen.
2011-05-02 12:46:28 -04:00
3979c6886f
Fix init_system_domain() description, pointed out by Elia Pinto.
2011-04-27 10:42:47 -04:00
6835095671
Changelog and module version bump for postgresql selabel_lookup update from KaiGai Kohei.
2011-04-15 10:25:10 -04:00
2b5cb1ff64
Dovecot managesieve support from Mika Pfluger.
...
For using the dovecot managesieve daemon on the standard (RFC 5804) port,
dovecot needs corenet_tcp_bind_sieve_port.
2011-04-04 14:37:29 -04:00
1b93cf8cb6
Changelog for remove unnecessary semicolons after interface/template calls everywhere from Elia Pinto.
2011-04-04 13:43:09 -04:00
88e6b506b6
Module version bump and changelog for courier from Sven Vermeulen.
2011-03-22 08:50:43 -04:00
0037b6084b
Amavis patch for connecting to nslcd from Miroslav Grepl.
...
* needs to talk to nslcd
* needs sigkill
* executes shell
2011-03-21 10:22:10 -04:00
1ca577db8c
Shorewall patch from Miroslav Grepl.
2011-03-21 09:42:12 -04:00
dc24f36872
Module version bump and changelog for cpufreqselector dbus patch from Guido Trentalancia.
2011-02-22 11:36:15 -05:00
fe4355ca6b
Module version bump and changelog for cron pam_namespace and pam_loginuid support from Harry Ciao.
2011-02-18 09:07:23 -05:00
0737bf0d71
Module version bump and changelog for Xserver update for startx from Sven Vermeulen.
2011-02-18 08:54:18 -05:00
d1d0493aac
Changelog for l1 domby l2 for contains MLS constraint from Harry Ciao.
2011-02-16 10:01:43 -05:00
b7e9f9dbea
Module version bump and changelog for Apache user webpages fix from Dominick Grift.
2011-02-16 09:35:06 -05:00
6b2440aab6
Changelog for Change build.conf to default to modular policy builds.
2011-02-16 08:54:43 -05:00
3139988506
Module version bump and changelog for Xen refinement patch from Stephen Smalley.
2011-02-15 13:48:04 -05:00
4f591873d4
Module version bump and changelog for sudo timestamp file location update from Sven Vermeulen.
2011-02-14 10:56:59 -05:00
2a8d412ba6
Module version bump and changelog for XServer keyboard event patch from Sven Vermeulen.
2011-02-14 09:13:44 -05:00
842bd4ec8a
Module version bump and changelog for RAID uevent patch from Sven Vermeulen.
2011-02-14 09:00:48 -05:00
4adcdf81c9
Changelog and module version bump for Gentoo ALSA init script usage patch from Sven Vermeulen.
2011-02-09 09:28:42 -05:00
a26f6088c9
Changelog and module version bump for LVM semaphore usage patch from Sven Vermeulen.
2011-02-09 09:01:18 -05:00
2998ef21c2
Module load request patch for insmod from Sven Vermeulen.
2011-02-09 08:57:12 -05:00
137bcf3200
Changelog for tcsd.
2011-02-07 08:51:41 -05:00
5188b333ad
Changelog for cron default contexts fix from Harry Ciao.
2011-02-01 10:43:16 -05:00
7131cc7a20
Changelog for man page changes from Justin Mattock.
2011-02-01 09:12:27 -05:00
640df09275
Add syslog capability.
2011-01-19 14:11:00 -05:00
8d46bd3017
Module version bump and changelog for /dev/console login from Harry Ciao.
2011-01-14 14:41:15 -05:00
54e9d3ca75
Module version bump and changelog for KaiGai's database object classes patch.
2011-01-14 10:35:52 -05:00
4f6f347d4c
Module version bump and changelog for hadoop ipsec patch from Paul Nuzzi.
2011-01-13 13:50:47 -05:00
17910a2a8c
Module version bump and changelog for mount fixes from Harry Ciao.
2011-01-10 10:23:04 -05:00
decb7de030
Module version bump and changelog for semanage update from Harry Ciao.
2011-01-10 09:21:11 -05:00
23083bb09e
Module version bump and changelog for vlock patch from Harry Ciao.
2011-01-05 11:23:47 -05:00
1c2e52e43f
Module version bump and changelog for hadoop CDH3 patchset.
2011-01-05 10:23:02 -05:00
a98e3bb8bd
Changelog entry for KaiGai's sepgsql_contexts patch.
2011-01-04 13:33:23 -05:00
aae6881065
Add changelog entry for samhain.
2010-12-15 11:28:52 -05:00
c3cd3843fb
Fix mojomojo module author. Apologies to Iain Arnell for the typo.
2010-12-15 08:09:08 -05:00
a3f28fbd7a
Update Changelog and VERSION for release.
2010-12-13 10:09:37 -05:00
6df9de4947
Module version bump for vlock. Changelog entry.
2010-11-01 11:22:25 -04:00
ff827d6cc3
Git man page from Dominick Grift.
2010-10-28 14:35:29 -04:00
2341eb2d45
Sosreport changelog entry.
2010-10-26 15:24:02 -04:00
641ac05468
Hadoop cleanup and module version bump.
...
* a pass cleaning up the style.
* adjusted some regular expressions in the file contexts: .* is the same as (.*)? since * means 0 or more matches.
* renamed a few interfaces
* two rules that I dropped as they require further explanation
> +files_read_all_files(hadoop_t)
A very big privilege.
and
> +fs_associate(hadoop_tasktracker_t)
This is a domain, so the only files with this type should be the /proc/pid ones, which don't require associate permissions.
2010-10-07 10:57:55 -04:00
e29f6bf08a
Module version bump and Changelog for 329138b and 413aac1.
2010-10-01 09:50:50 -04:00
db774a54a6
Add support for custom build options.
2010-09-30 14:53:44 -04:00
25d796ed37
Unconditional staff and user oidentd home config access from Dominick Grift.
2010-09-15 08:20:16 -04:00
785ee7988c
Module version bump and changelog entry for conditional mmap_zero patch.
2010-09-01 10:08:09 -04:00
76a9fe96e4
Module version bumps and changelog for devtmpfs patchset.
2010-08-25 11:19:27 -04:00
c62f1bef77
Dbadm updates from KaiGai Kohei.
2010-08-19 08:41:39 -04:00
a9539a063b
Additional kdumpgui cleanup.
2010-08-10 09:21:01 -04:00
5d6bf457b9
Changelog entry for sambagui.
2010-08-09 09:51:35 -04:00
12ab39533b
Changelog entry for accountsd.
2010-08-03 09:51:01 -04:00
9d4395a736
MojoMojo from Lain Arnell.
2010-08-02 09:28:06 -04:00
27eeb649cc
Virtio disk file context update from Mika Pfluger.
2010-08-02 08:33:41 -04:00
21fdee9dd5
Increase bindreservport range to 512-1024 in corenetwork, from Dan Walsh.
...
We went back and reread the bindreservport code in glibc.
Turns out the range or ports that this will reserve are 512-1024 rather
then 600-1024.
The code actually first tries to reserve a port from 600-1024 and if
they are ALL reserved will try 512-599.
So we need to change corenetwork to reflect this.
2010-07-19 14:22:44 -04:00
29f3bfa464
Fix JIT usage for freshclam.
...
http://marc.info/?l=selinux&m=127893898208934&w=2
2010-07-13 08:39:54 -04:00
7e265a8abb
Add shutdown from Dan Walsh.
2010-07-07 11:10:56 -04:00
b841dffda1
Add livecd from Dan Walsh.
2010-07-07 10:28:25 -04:00
08690c84ad
Remove ethereal module since the application was renamed to wireshark due to trademark issues.
2010-07-07 09:31:57 -04:00
bca0cdb86e
Remove duplicate/redundant rules, from Russell Coker.
2010-07-07 08:41:20 -04:00
0001e26f4f
Increased default number of categories to 1024, from Russell Coker.
2010-06-28 09:04:24 -04:00
98652c65a3
Add missing changelog entry for cgroup.
2010-06-08 13:08:36 -04:00
5c2b95e1b9
Add missing cluster suite modules that were missing from the Changelog.
2010-05-26 11:53:21 -04:00
03e653bd28
Changelog and version update for release.
2010-05-25 16:01:49 -04:00
f9bdd1e389
Add missing changelog entries.
2010-05-24 15:24:40 -04:00
e9e43f04b3
Plymouthd policy from Dan Walsh.
2010-05-18 09:54:18 -04:00
e07fbc004d
Add DenyHosts from Dan Walsh.
2010-04-26 12:59:02 -04:00
85e71c86da
Fix network_port() in corenetwork to correctly handle port ranges.
2010-04-13 11:06:02 -04:00
ec8d32c8e9
[BUGFIX] lack of type transition on dbadm domain (Re: dbadm.pp is not available in selinux-policy package)
...
I found out a bug when we initialize the database with dbadm_r:dbadm_t
which belongs to sepgsql_admin_type attribute.
In the case when sepgsql_admin_type create a new database objects,
it does not have valid type_transition rules. So, it was failed.
Sorry, I didn't find out it for a long time.
And db_procedure:{execute} on the sepgsql_proc_exec_t might be necessary
for the administrative domain independently from sepgsql_unconfined_dbadm,
because we need to execute some of system defined procedures to look up
system tables.
2010-04-12 10:37:21 -04:00
ee2d2dda24
Add usbmuxd from Dan Walsh.
2010-03-29 13:29:18 -04:00
6d4dbd20ae
Vhostmd from Dan Walsh.
2010-03-29 11:25:06 -04:00
827060cb04
Style fixes and module version bumps for 38fc1bd.
2010-03-17 09:28:18 -04:00
29b580ce8f
Add sectoolm by Miroslav Grepl.
2010-02-19 09:39:06 -05:00
a513794b4c
Chronyd from Miroslav Grepl.
2010-02-16 14:53:59 -05:00
12dc618bff
Add changelog entry for 1031ee6.
2010-02-08 14:52:02 -05:00
e526fca176
Add nut from Stefan Schulze Frielinghaus and Miroslav Grepl.
2010-02-08 11:29:12 -05:00
4ebfec7303
Add pyicqt from Stefan Schulze Frielinghaus.
2010-02-08 10:58:16 -05:00
22a2874dbf
Add dbadm, from KaiGai Kohei.
2010-02-08 10:34:08 -05:00
7fc72a02d9
Changelog and version bump for X object manager changes.
2009-12-03 10:40:42 -05:00
a404bc39a7
update VERSION and Changelog for release.
2009-11-17 10:17:43 -05:00
e6d8fd1e50
additional cleanup for e877913.
2009-11-11 11:28:50 -05:00
222d5b5987
clean up 0bca409 and add changelog entry.
2009-11-03 09:25:37 -05:00
b04669aaea
add tuned from miroslav grepl.
2009-10-26 09:42:11 -04:00
c5967300e2
add changelog entry for e4928c5f79
2009-10-22 09:22:14 -04:00
4be8dd10b9
add seunshare from dan.
2009-09-28 15:40:06 -04:00
5a6b1fe2b4
add dkim from stefan schulze frielinghaus.
2009-09-17 09:12:33 -04:00
21b1d1096f
add gnomeclock from dan.
2009-09-16 08:38:58 -04:00
ed70158a39
add rtkit from dan.
2009-09-15 09:53:24 -04:00
1d3b9e384c
clean up xscreensaver.
2009-09-15 09:41:42 -04:00
c141d835f1
add modemmanager from dan.
2009-09-14 09:48:13 -04:00
Chris PeBenito
Chris PeBenito
KaiGai Kohei