[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: gallery2 policy

From: John Griffiths <fedora01 grifent com>
To: fedora-selinux-list redhat com
Subject: Re: gallery2 policy
Date: Fri, 31 Aug 2007 13:27:02 -0400

This is what audit2allow is showing now.

   tail -n60 /var/log/messages | audit2allow -m local

   module local 1.0;

   require {
           type unlabeled_t;
           type default_t;
           type boot_t;
           type httpd_t;
           type httpd_sys_script_t;
           type lost_found_t;
           class lnk_file read;
           class dir getattr;
           class file { read write getattr };
   }

   #============= httpd_sys_script_t ==============
   allow httpd_sys_script_t unlabeled_t:file { read write };

   #============= httpd_t ==============
   allow httpd_t boot_t:dir getattr;
   allow httpd_t default_t:file getattr;
   allow httpd_t default_t:lnk_file read;
   allow httpd_t lost_found_t:dir getattr;

It is getting worse.

Regards,
John

Follow-Ups:
- Re: gallery2 policy
  - From: Daniel J Walsh

References:
- Re: gallery2 policy
  - From: John Griffiths
- Re: gallery2 policy
  - From: John Griffiths

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]