[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Fedora 11 Update: mod_selinux-2.2.1938-1.fc11



--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-5638
2009-05-28 07:03:11
--------------------------------------------------------------------------------

Name        : mod_selinux
Product     : Fedora 11
Version     : 2.2.1938
Release     : 1.fc11
URL         : http://code.google.com/p/sepgsql/
Summary     : Apache/SELinux plus module
Description :
The Apache/SELinux plus is an extra module (mod_selinux.so) which enables
to launch contents-handler (it means both of references to static contents
and invocations of web applications) with individual and restrictive
privileges set, based on http authentication.
The mod_selinux.so generates a one-time worker thread for each request,
and it assigns the worker restrictive domain based on the authentication
prior to launching contents handlers.
It means we can apply valid access controls on web-applications, and
makes assurance operating system can prevent violated accesses, even if
web application contains security bugs or vulnerabilities.

--------------------------------------------------------------------------------
Update Information:

New package: mod_selinux    Note:  I found a minor bug in v2.2.1930, so
cancelled the previous request. The v2.2.1930 fixes it, then submitted again.
Description:  The Apache/SELinux plus is an extra module (mod_selinux.so) which
enables to launch contents-handler (it means both of references to static
contents and invocations of web applications) with individual and restrictive
privileges set, based on http authentication.  The mod_selinux.so generates a
one-time worker thread for each request, and it assigns the worker restrictive
domain based on the authentication prior to launching contents handlers.  It
means we can apply valid access controls on web-applications, and makes
assurance operating system can prevent violated accesses, even if web
application contains security bugs or vulnerabilities.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #501228 - Review Request: mod_selinux - An apache module to launch web applications with restrictive privileges
        https://bugzilla.redhat.com/show_bug.cgi?id=501228
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mod_selinux' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]