selinux-refpolicy

History

Sven Vermeulen b00d94fb72 Allow capabilities for syslog-ng The syslog-ng logger has (build-optional) support for capabilities. If capabilities support is enabled, running it without setcap/getcap permissions gives the following upon start: * Starting syslog-ng ... syslog-ng: Error setting capabilities, capability management disabled; error='Permission denied' [ ok ] Granting only setcap (initial AVC seen) does not fully help either: * Starting syslog-ng ... Error managing capability set, cap_set_proc returned an error; With setcap and getcap enabled, syslog-ng starts and functions fine. See also https://bugs.gentoo.org/show_bug.cgi?id=488718 Reported-by: Vincent Brillault <gentoo@lerya.net> Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>		2013-11-13 09:14:34 -05:00
..
flask	flask: add the attach_queue permission to the tun_socket object class	2013-01-22 12:46:06 -05:00
modules	Allow capabilities for syslog-ng	2013-11-13 09:14:34 -05:00
support	Add optional file name to filetrans_pattern.	2011-11-02 08:48:25 -04:00
constraints	Allow user and role changes on dynamic transitions with the same constraints as regular transitions.	2011-09-02 09:59:26 -04:00
global_booleans	Move secure_mode_policyload into selinux module as that is the only place it is used.	2011-09-26 09:53:23 -04:00
global_tunables
mcs	Implement mcs_constrained_type	2012-11-28 16:12:25 -05:00
mls	Add MLS constraints for x_pointer and x_keyboard.	2013-08-26 08:30:05 -04:00
policy_capabilities
users