[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

rpms/selinux-policy-targeted/devel policy-20050719.patch,1.1,1.2



Author: dwalsh

Update of /cvs/dist/rpms/selinux-policy-targeted/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv28009

Modified Files:
	policy-20050719.patch 
Log Message:
* Tue Jul 19 2005 Dan Walsh <dwalsh redhat com> 1.25.3-1
- Update to latest from NSA


policy-20050719.patch:
 domains/program/crond.te                 |    2 +-
 domains/program/fsadm.te                 |    2 +-
 domains/program/getty.te                 |    2 +-
 domains/program/ifconfig.te              |    1 +
 domains/program/initrc.te                |    2 +-
 domains/program/modutil.te               |    2 +-
 domains/program/unused/NetworkManager.te |    8 ++++++++
 domains/program/unused/apmd.te           |    2 +-
 domains/program/unused/cvs.te            |   10 ++++++++++
 domains/program/unused/cyrus.te          |    1 +
 domains/program/unused/evolution.te      |    1 +
 domains/program/unused/hald.te           |    4 ++++
 domains/program/unused/hotplug.te        |    3 ++-
 domains/program/unused/kudzu.te          |    5 +++--
 domains/program/unused/lvm.te            |    2 +-
 domains/program/unused/mta.te            |    2 +-
 domains/program/unused/pamconsole.te     |    2 +-
 domains/program/unused/ping.te           |    4 ++++
 domains/program/unused/postgresql.te     |    1 +
 domains/program/unused/pppd.te           |   29 ++++++++++++++++++++++++++++-
 domains/program/unused/rlogind.te        |    1 +
 domains/program/unused/slocate.te        |    3 ++-
 domains/program/unused/squid.te          |    1 +
 domains/program/unused/thunderbird.te    |    1 +
 domains/program/unused/udev.te           |    5 +++--
 domains/program/unused/vpnc.te           |   15 +++++++++++++--
 domains/program/unused/winbind.te        |    1 +
 file_contexts/distros.fc                 |    6 ++++++
 file_contexts/program/pppd.fc            |    1 +
 file_contexts/program/vpnc.fc            |    1 +
 genfs_contexts                           |    1 +
 macros/admin_macros.te                   |    1 +
 macros/base_user_macros.te               |   13 -------------
 macros/content_macros.te                 |    5 ++++-
 macros/global_macros.te                  |   19 +++++++++++++++++++
 macros/program/cdrecord_macros.te        |    7 +++++--
 macros/program/evolution_macros.te       |    7 +++----
 macros/program/gconf_macros.te           |    1 +
 macros/program/gnome_vfs_macros.te       |    6 ++++++
 macros/program/mail_client_macros.te     |   13 +++++++++++--
 macros/program/mozilla_macros.te         |    6 +++++-
 macros/program/thunderbird_macros.te     |   14 ++++++++------
 macros/user_macros.te                    |   18 +++---------------
 net_contexts                             |    1 +
 targeted/domains/program/crond.te        |    9 ++++++---
 tunables/distro.tun                      |    2 +-
 tunables/tunable.tun                     |    7 ++-----
 types/file.te                            |    9 +++++++++
 types/network.te                         |    1 +
 49 files changed, 189 insertions(+), 71 deletions(-)

Index: policy-20050719.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy-targeted/devel/policy-20050719.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- policy-20050719.patch	19 Jul 2005 21:12:34 -0000	1.1
+++ policy-20050719.patch	20 Jul 2005 03:32:52 -0000	1.2
@@ -228,16 +228,18 @@
  # for /var/run/console.lock checking
 diff --exclude-from=exclude -N -u -r nsapolicy/domains/program/unused/ping.te policy-1.25.3/domains/program/unused/ping.te
 --- nsapolicy/domains/program/unused/ping.te	2005-07-06 17:15:07.000000000 -0400
-+++ policy-1.25.3/domains/program/unused/ping.te	2005-07-19 15:41:44.000000000 -0400
-@@ -17,6 +17,7 @@
++++ policy-1.25.3/domains/program/unused/ping.te	2005-07-19 23:17:05.000000000 -0400
+@@ -17,6 +17,9 @@
  in_user_role(ping_t)
  type ping_exec_t, file_type, sysadmfile, exec_type;
  
-+ifdef(`targeted_policy', `', `
++ifdef(`targeted_policy', `
++	allow ping_t { devpts_t ttyfile ptyfile }:chr_file rw_file_perms;
++', `
  bool user_ping false;
  
  if (user_ping) {
-@@ -25,6 +26,7 @@
+@@ -25,6 +28,7 @@
  	allow ping_t { ttyfile ptyfile }:chr_file rw_file_perms;
  	ifdef(`gnome-pty-helper.te', `allow ping_t gphdomain:fd use;')
  }


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]