RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux-refpolicy/policy/modules/system
History
Krzysztof Nowicki 3b5e622339 Enable /etc directory protection using ProtectSystem 
Setting this service option to 'full' or 'strict' will also remount the
/etc directory. Allow this in the policy.

This fixes the systemd-networkd service, but will also positively affect
any other service using the above hardening option.
 		2017-05-15 18:41:00 -04:00
..
application.fc
application.if
application.te
authlogin.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
authlogin.if
authlogin.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
clock.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
clock.if
clock.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
fstools.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
fstools.if Further strict systemd fixes from Russell Coker. 2017-04-20 20:00:34 -04:00
fstools.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
getty.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
getty.if getty: overlook module 2017-02-27 19:21:39 +01:00
getty.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
hostname.fc
hostname.if
hostname.te
hotplug.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
hotplug.if
hotplug.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
init.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
init.if Further strict systemd fixes from Russell Coker. 2017-04-20 20:00:34 -04:00
init.te Enable /etc directory protection using ProtectSystem 2017-05-15 18:41:00 -04:00
ipsec.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
ipsec.if
ipsec.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
iptables.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
iptables.if kmod, lvm, brctl patches from Russell Coker 2017-04-18 21:17:36 -04:00
iptables.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
libraries.fc libraries: update wildcard /usr/lib fcontext 2017-05-11 19:35:53 -04:00
libraries.if
libraries.te Module version bump for changes from Jason Zaman and Luis Ressel. 2017-05-11 19:54:25 -04:00
locallogin.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
locallogin.if
locallogin.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
logging.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
logging.if systemd init from Russell Coker 2017-04-16 19:08:40 -04:00
logging.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
lvm.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
lvm.if lvm: small adjustments 2017-03-12 10:32:02 +01:00
lvm.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
metadata.xml
miscfiles.fc
miscfiles.if systemd-resolvd, sessions, and tmpfiles take2 2017-03-28 18:51:35 -04:00
miscfiles.te systemd-resolvd, sessions, and tmpfiles take2 2017-03-28 18:51:35 -04:00
modutils.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
modutils.if Further strict systemd fixes from Russell Coker. 2017-04-20 20:00:34 -04:00
modutils.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
mount.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
mount.if some little misc things from Russell Coker. 2017-04-26 18:03:02 -04:00
mount.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
netlabel.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
netlabel.if
netlabel.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
selinuxutil.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
selinuxutil.if
selinuxutil.te Module version bump for changes from Jason Zaman and Luis Ressel. 2017-05-11 19:54:25 -04:00
setrans.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
setrans.if
setrans.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
sysnetwork.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
sysnetwork.if Systemd-related changes from Russell Coker. 2017-04-06 17:37:50 -04:00
sysnetwork.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
systemd.fc Merge branch 'var_run' of git://github.com/cgzones/refpolicy 2017-03-25 13:03:32 -04:00
systemd.if more systemd stuff from Russell Coker 2017-04-16 19:48:04 -04:00
systemd.te apt/dpkg strict patches from Russell Coker. 2017-04-29 11:14:15 -04:00
udev.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
udev.if misc daemons from Russell Coker. 2017-04-18 20:38:13 -04:00
udev.te Module version bump for /usr/bin fc fixes from Nicolas Iooss. 2017-05-04 08:27:46 -04:00
unconfined.fc
unconfined.if Systemd-related changes from Russell Coker. 2017-04-06 17:37:50 -04:00
unconfined.te some userdomain patches from Russell Coker 2017-04-18 21:41:45 -04:00
userdomain.fc
userdomain.if Rename apm to acpi from Russell Coker. 2017-04-26 06:36:20 -04:00
userdomain.te Module version bump for patches from Russell Coker and Guido Trentalancia. 2017-04-26 06:39:39 -04:00