5e7b58612e
* Do not audit capability net_admin for smbd_t/nmbd_t * Allow nmbd_t to manage samba_var_t dirs Fixes: avc: denied { net_admin } for pid=334 comm="smbd" capability=12 scontext=system_u:system_r:smbd_t tcontext=system_u:system_r:smbd_t tclass=capability permissive=1 avc: denied { net_admin } for pid=273 comm="nmbd" capability=12 scontext=system_u:system_r:nmbd_t tcontext=system_u:system_r:nmbd_t tclass=capability permissive=1 avc: denied { create } for pid=273 comm="nmbd" name="msg.lock" scontext=system_u:system_r:nmbd_t tcontext=system_u:object_r:samba_var_t tclass=dir permissive=1 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> |
||
---|---|---|
.. | ||
flask | ||
modules | ||
support | ||
constraints | ||
context_defaults | ||
global_booleans | ||
global_tunables | ||
mcs | ||
mls | ||
policy_capabilities | ||
users |