Commit Graph

601 Commits

Author SHA1 Message Date
Chris PeBenito 99505c1c89 fix files_exec_usr_src_files 2005-10-07 18:48:43 +00:00
Chris PeBenito 4f9f30c8df * Updated to sedoctool to read bool files and tunable
files separately.
* Changed the xml tag of <boolean> to <bool> to be consistent
  with gen_bool().
* Modified the implementation of segenxml to use regular
  expressions.
2005-10-07 18:08:50 +00:00
Chris PeBenito e02c61cfa4 rename context_template() to gen_context() 2005-10-06 19:33:06 +00:00
Chris PeBenito 6e99a6cfd1 more apache work 2005-10-05 21:17:22 +00:00
Chris PeBenito fc6524d746 add ftp 2005-10-05 19:52:53 +00:00
Chris PeBenito 5bc9f3061b fix comment 2005-10-05 19:10:31 +00:00
Chris PeBenito f4d7fdcfaf add interfaces used in old anonymous_domain() 2005-10-05 19:09:42 +00:00
Chris PeBenito a996bdf4ad add most of apache 2005-09-29 20:59:00 +00:00
Chris PeBenito a5ec7cb6c4 more pieces of ftp 2005-09-29 13:32:28 +00:00
Chris PeBenito a2868f6eae start adding secure_file_type implementation 2005-09-28 19:07:22 +00:00
Chris PeBenito 79cde317df add winbind 2005-09-28 18:22:58 +00:00
Chris PeBenito 6942484b6f add in a couple missing rules 2005-09-28 18:10:48 +00:00
Chris PeBenito 246a604273 add in a few parts of ftp 2005-09-27 22:29:45 +00:00
Chris PeBenito 20e306e2de add dmidecode 2005-09-27 21:24:01 +00:00
Chris PeBenito b03f960ece add disable_trans support 2005-09-27 20:17:50 +00:00
Chris PeBenito 1f91e1bfe5 a few conditional cleanups 2005-09-27 19:40:44 +00:00
Chris PeBenito f0574fa9aa add mls privileges 2005-09-26 20:26:32 +00:00
Chris PeBenito 6d788d87d1 comment fix 2005-09-26 20:24:44 +00:00
Chris PeBenito 9edc289521 add anaconda 2005-09-23 22:15:04 +00:00
Chris PeBenito b9ae3aab39 rework nis_use_ypbind since optionals dont work in conditionals 2005-09-23 22:14:54 +00:00
Chris PeBenito fa67570d9a add radvd, plus a few cleanups from sediff 2005-09-23 21:20:03 +00:00
Chris PeBenito 842859260c add kudzu 2005-09-23 19:38:34 +00:00
Chris PeBenito 0058418017 remove classes from gen_requires, and disable net_raw for now 2005-09-23 15:37:41 +00:00
Chris PeBenito 681c9a02e7 fixes from sediff 2005-09-22 21:59:50 +00:00
Chris PeBenito f7ba4a8963 add uucp 2005-09-22 16:27:52 +00:00
Chris PeBenito b53f93a41f testing fixes 2005-09-22 15:32:53 +00:00
Chris PeBenito 08c5c972cf fix for targeted 2005-09-22 14:14:25 +00:00
Chris PeBenito 25c6746156 loadable module compile fixes 2005-09-21 20:01:40 +00:00
Chris PeBenito 142e9f40ea targeted and redhat cleanups 2005-09-21 14:49:41 +00:00
Chris PeBenito 0e15cdfb50 change monolithic_policy to self_contained_policy for clarity 2005-09-21 13:26:30 +00:00
Chris PeBenito 3774e4eb28 todo cleanup 2005-09-20 20:48:17 +00:00
Chris PeBenito 93070cbaed add cvs 2005-09-20 18:49:13 +00:00
Chris PeBenito 9210553ecb add cpucontrol 2005-09-20 18:15:35 +00:00
Chris PeBenito 4fd5201a59 add rlogin and telnet 2005-09-20 17:11:53 +00:00
Chris PeBenito 200f453ff5 add stunnel 2005-09-20 13:47:36 +00:00
Chris PeBenito a1fcff33f2 final updates from nsa cvs 2005-09-19 21:17:45 +00:00
Chris PeBenito 41c4800de4 a few module compile fixes 2005-09-19 14:18:48 +00:00
Chris PeBenito cf6a7d8993 more upstream merging 2005-09-16 21:20:37 +00:00
Chris PeBenito cff75c90ca more upstream merging 2005-09-16 19:36:10 +00:00
Chris PeBenito 40adb57f47 add tftp 2005-09-16 15:18:09 +00:00
Chris PeBenito ccc5978224 add snmp 2005-09-16 14:54:36 +00:00
Chris PeBenito a0824843c2 more merging from nsa cvs 2005-09-16 13:36:26 +00:00
Chris PeBenito 98a8ead4c5 more updates 2005-09-15 21:03:29 +00:00
Chris PeBenito 605ba28540 more merging from nsa cvs 2005-09-15 15:34:31 +00:00
Chris PeBenito 5a2649cefd cleanup 2005-09-14 19:27:30 +00:00
Chris PeBenito 84c92239d4 add samba 2005-09-14 18:33:53 +00:00
Chris PeBenito 4479b31614 require fix 2005-09-14 15:41:46 +00:00
Chris PeBenito 71fe0fa4c5 fixes for module compiling 2005-09-14 00:30:10 +00:00
Chris PeBenito 0907bda1e0 more merging of NSA CVS policy 2005-09-13 13:06:07 +00:00
Chris PeBenito 2705f9a0f3 begin merging in upstream NSA CVS changes 2005-09-12 21:40:56 +00:00
Chris PeBenito 712566ee41 fixes to make base module compilable 2005-09-12 15:17:39 +00:00
Chris PeBenito 2e863f8ad0 add first part of changes to make base module compilable 2005-09-09 20:51:54 +00:00
Chris PeBenito 0fdf3ef75e fix sshd to use initrc transition while typeattribute in conditionals is still broken 2005-09-09 20:49:59 +00:00
Chris PeBenito 9ff3003346 add zebra. change ssh to default to initrc transition instead of inetd while typeattribute in conditionals doesnt work 2005-09-09 13:24:11 +00:00
Chris PeBenito eb3cb6820a add portmap 2005-09-08 17:12:38 +00:00
Chris PeBenito d17b4d2323 add ktalk 2005-09-08 13:42:13 +00:00
Chris PeBenito 9b06402eaf add missing rules of other domains using inn 2005-09-08 13:23:11 +00:00
Chris PeBenito 763a5e30c6 misc fixes 2005-09-07 13:31:37 +00:00
Chris PeBenito 8d93523409 add inn 2005-09-06 18:37:27 +00:00
Chris PeBenito 603f90ab9d misc fixes 2005-09-05 18:17:17 +00:00
Chris PeBenito b11a75a5e3 add ntp 2005-09-05 16:47:19 +00:00
Chris PeBenito ce1b44aac4 typo 2005-09-02 20:55:17 +00:00
Chris PeBenito ac0483aefe add dictd 2005-09-02 20:50:54 +00:00
Chris PeBenito fdae8e755e add hal 2005-09-02 20:29:52 +00:00
Chris PeBenito f344c0f38e move dhcpd to dhcp 2005-09-02 19:18:43 +00:00
Chris PeBenito 0f707d52ab add squid 2005-09-02 19:11:07 +00:00
Chris PeBenito 7c8fc35b14 add dhcpd 2005-09-02 14:52:08 +00:00
Chris PeBenito 9d3bdc25af fix bugs uncovered from sediff 2005-09-01 20:13:42 +00:00
Chris PeBenito c0d1566a13 move rhgb_domain into TODO so modules can compile as binary modules 2005-09-01 13:52:59 +00:00
Chris PeBenito 631ee4d3cf finish remaining dbus bits 2005-09-01 13:34:45 +00:00
Chris PeBenito 0c3d170578 add dbus 2005-08-31 20:58:12 +00:00
Chris PeBenito 6af06cd8b6 fix typos 2005-08-31 16:54:19 +00:00
Chris PeBenito 768283ac46 cosmetics 2005-08-31 16:49:30 +00:00
Chris PeBenito 6e61566dba add comsat. clean up kerberos and nscd interfaces 2005-08-31 15:25:12 +00:00
Chris PeBenito 246839f3d2 fix up most of mta attribute insanity 2005-08-30 20:47:41 +00:00
Chris PeBenito 451c1e3d59 send user role to per userdomain templates. update templated interfaces
to have the prefix be the first argument
2005-08-30 15:48:57 +00:00
Chris PeBenito e5d45268fd make corecommands required 2005-08-30 14:41:52 +00:00
Chris PeBenito 9439a25899 update config, switch most to module 2005-08-26 13:30:59 +00:00
Chris PeBenito 2a94561a89 start adding in templated interfaces 2005-08-25 20:27:20 +00:00
Chris PeBenito 6d12276bf5 fix quoting 2005-08-24 20:18:28 +00:00
Chris PeBenito 3110dec4f3 fix tunables 2005-08-24 20:00:10 +00:00
Chris PeBenito 82024f9942 do bools until loadable modules support tunables 2005-08-24 18:30:47 +00:00
Chris PeBenito d83fdad248 add bind 2005-08-23 17:26:19 +00:00
Chris PeBenito 902be0ae21 add privoxy 2005-08-22 21:49:27 +00:00
Chris PeBenito 35ecf83839 add rsync 2005-08-22 21:17:10 +00:00
Chris PeBenito f9b11e9615 add howl 2005-08-22 20:43:20 +00:00
Chris PeBenito 4b8c5489ec move require to right position, for modular policy 2005-08-22 20:18:42 +00:00
Chris PeBenito c04f2abe88 complete infrastructure support for building modules 2005-08-22 17:07:17 +00:00
Chris PeBenito db93d707c5 mark userpace object classes 2005-08-22 14:13:19 +00:00
Chris PeBenito f6e28abbab moved to selinux module 2005-08-19 20:05:02 +00:00
Chris PeBenito fb0a3a98c6 initial support for compiling loadable modules 2005-08-18 21:27:20 +00:00
Chris PeBenito f862c35c37 add gpm 2005-08-17 21:28:31 +00:00
Chris PeBenito 2961e79b55 add ldap 2005-08-17 18:33:43 +00:00
Chris PeBenito 23ca91f8bb cleanup 2005-08-17 17:31:57 +00:00
Chris PeBenito 545b0c9176 add rshd 2005-08-17 15:23:24 +00:00
Chris PeBenito 57a96cbd0b add firstboot 2005-08-17 14:14:07 +00:00
Chris PeBenito 2d803edc73 more debian cleanup 2005-08-17 14:09:29 +00:00
Chris PeBenito 4806a05cfb fix broken xml of previous commit 2005-08-15 19:35:20 +00:00
Chris PeBenito 5f38a65aab try to knock out more of the distro_debian bootloader stuff 2005-08-15 19:31:37 +00:00
Chris PeBenito 21468a6076 add loadkeys 2005-08-15 14:46:17 +00:00
Chris PeBenito 8843093607 more comments 2005-08-12 19:28:30 +00:00
Chris PeBenito f0b1efa2a2 all dev nodes assoc to tmpfs, since most everyone is moving to udev 2005-08-12 19:28:15 +00:00
Chris PeBenito 35b494789d fix some udev naming 2005-08-12 18:13:03 +00:00
Chris PeBenito aae06c1306 fix system spool file problem 2005-08-12 17:54:55 +00:00
Chris PeBenito f7ebea06e3 finalize desc -> summary xml change 2005-08-11 17:46:39 +00:00
Chris PeBenito 4aa0dc20b4 add tcpd 2005-08-11 15:17:13 +00:00
Chris PeBenito 052c953ae5 add quota 2005-08-11 14:49:58 +00:00
Chris PeBenito 5a3895a9f6 tabbing fix 2005-08-11 14:35:52 +00:00
Chris PeBenito e784300a62 add sudo 2005-08-09 19:30:43 +00:00
Chris PeBenito b9d7d70b33 add template xml 2005-08-09 19:21:25 +00:00
Chris PeBenito 9489149ec0 add su 2005-08-08 21:03:23 +00:00
Chris PeBenito 9465452eec fix gen_user comment for more clarity 2005-08-08 18:13:56 +00:00
Chris PeBenito dce68dc48d add updfstab 2005-08-08 15:51:15 +00:00
Chris PeBenito f5e321b0f0 fix xml tags 2005-08-08 15:43:20 +00:00
Chris PeBenito 7057c18db0 a few more ssh touchups 2005-08-05 18:49:23 +00:00
Chris PeBenito ed78ea0034 add tmpreaper 2005-08-05 15:32:27 +00:00
Chris PeBenito 9a66d4e562 add acct 2005-08-05 14:32:12 +00:00
Chris PeBenito 3fd8336882 misc cleanup 2005-08-04 20:54:51 +00:00
Chris PeBenito 42be7c214d add mysql 2005-08-03 17:56:26 +00:00
Chris PeBenito 046a21da80 search sbin dirs to find the pgms 2005-08-03 17:43:41 +00:00
Chris PeBenito 81343a6f90 * Rename ipsec connect interface for consistency.
* Add missing parts of unix stream socket connect interface
  of ipsec.
* Rename inetd connect interface for consistency.
2005-08-03 15:16:33 +00:00
Chris PeBenito bbdbdb9edf fix stray line that got out of TODO 2005-07-29 15:07:15 +00:00
Chris PeBenito e5590ea5ec work on user transition 2005-07-28 20:52:55 +00:00
Chris PeBenito 022f61c0e3 add connect interface on ports to handle name_connect tcp perm 2005-07-22 15:38:01 +00:00
Chris PeBenito 50527cf581 make network_interface able to support multiple interfaces having the same type 2005-07-22 14:00:38 +00:00
Chris PeBenito 953541a918 update from privmail 2005-07-21 20:34:57 +00:00
Chris PeBenito 80526ccbdd add an example module config for a targeted policy 2005-07-20 20:11:49 +00:00
Chris PeBenito ea7d571bd7 /var/lib is now a mountpoint 2005-07-20 17:36:48 +00:00
Chris PeBenito 53857c8c05 unconfined can pass all constraints 2005-07-20 17:24:23 +00:00
Chris PeBenito ef424c14d4 name_connect only on tcp_sockets 2005-07-20 17:10:07 +00:00
Chris PeBenito 9496fd5119 unconfined can name_connect to all ports 2005-07-20 17:08:07 +00:00
Chris PeBenito d250634311 reorder kernel policy, add attributes for sysctl and proc entries. fix unconfined interface 2005-07-20 17:06:10 +00:00
Chris PeBenito f82c6ac64c bah typo 2005-07-20 15:08:33 +00:00
Chris PeBenito 0b28a23114 user home dirs were missing file type in targ policy 2005-07-20 15:06:49 +00:00
Chris PeBenito 1e3f610b3b add missing dir and file perms for selinuxfs in unconfined 2005-07-20 14:57:13 +00:00
Chris PeBenito 689f6ddb35 fix typos and import some rules from NSA cvs to make targeted policy work 2005-07-20 14:25:24 +00:00
Chris PeBenito 474f43d13d should actually try compiling first :x 2005-07-20 13:39:10 +00:00
Chris PeBenito bd7e7a6417 missed a line 2005-07-20 13:37:18 +00:00
Chris PeBenito a28f6db576 add in some rules from NSA CVS to make targeted policy work 2005-07-20 13:30:06 +00:00
Chris PeBenito 8c3f438f75 corenet was missing from unconfined 2005-07-19 20:38:26 +00:00
Chris PeBenito 892266ca76 more targeted policy fixes 2005-07-19 20:26:02 +00:00
Chris PeBenito 21f47732b1 add new netlink socket class 2005-07-19 20:25:42 +00:00
Chris PeBenito ec848d247f more fixes for targeted 2005-07-19 19:37:43 +00:00
Chris PeBenito 2ec4c9d38f more cleanup 2005-07-19 18:40:31 +00:00
Chris PeBenito 8b0bbdda34 fixes for targeted policy 2005-07-19 18:40:19 +00:00
Chris PeBenito 391edeb577 fix assertions for framework 2005-07-18 20:17:21 +00:00
Chris PeBenito a5f339f134 more cleanup in system 2005-07-18 18:31:49 +00:00
Chris PeBenito 9f103ce14b fix to use context_template() 2005-07-18 14:25:05 +00:00
Chris PeBenito 3b6174a142 add missing context template 2005-07-15 20:54:24 +00:00
Chris PeBenito 50aca6d2f9 add raid (mdadm) 2005-07-15 20:45:26 +00:00