RepoMirrors
/
haproxy
mirror of http://git.haproxy.org/git/haproxy.git/
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
haproxy/contrib/selinux
History
Jan-Frode Myklebust 6b6a53db5f [CONTRIB] selinux policy for haproxy 
Here's an selinux policy for haproxy. The patch is built and lightly
tested with haproxy-1.3.15.7-1.fc10.i386 on Fedora9, and haproxy-1.2.18
on RHEL5.
 		2009-03-21 10:15:00 +01:00
..
README [CONTRIB] selinux policy for haproxy 2009-03-21 10:15:00 +01:00
haproxy.fc [CONTRIB] selinux policy for haproxy 2009-03-21 10:15:00 +01:00
haproxy.if [CONTRIB] selinux policy for haproxy 2009-03-21 10:15:00 +01:00
haproxy.te [CONTRIB] selinux policy for haproxy 2009-03-21 10:15:00 +01:00

README 

This directory includes an selinux policy for haproxy. It assumes
the following file locations:

	/usr/sbin/haproxy		-- binary
	/etc/haproxy/haproxy\.cfg	-- configuration
	/var/run/haproxy\.pid		-- pid-file
	/var/run/haproxy\.sock(.*)	-- stats socket
	/var/empty/haproxy		-- chroot dir

To build and load it on RHEL5 you'll need the "selinux-policy-devel" package,
and from within this directory run:

	make -f /usr/share/selinux/devel/Makefile
	sudo semodule -i haproxy.pp
	restorecon /usr/sbin/haproxy /etc/haproxy/haproxy.cfg /var/run/haproxy.pid /var/run/haproxy.sock*


Feedback to Jan-Frode Myklebust <janfrode@tanso.no> is much appreciated,