a trivial patch

All of lore.kernel.org
 help / color / mirror / Atom feed

* a trivial patch
@ 2004-08-02 12:34 Russell Coker
  0 siblings, 0 replies; only message in thread
From: Russell Coker @ 2004-08-02 12:34 UTC (permalink / raw)
  To: SE Linux; +Cc: Stephen Smalley

[-- Attachment #1: Type: text/plain, Size: 106 bytes --]

Steve, please check this in the CVS.

-- 
http://apac.redhat.com/disclaimer
See above URL for disclaimer.

[-- Attachment #2: diff --]
[-- Type: text/x-diff, Size: 1523 bytes --]

diff -ru /usr/src/se/policy/domains/program/dmesg.te ./domains/program/dmesg.te
--- /usr/src/se/policy/domains/program/dmesg.te	2004-07-12 23:37:25.000000000 +1000
+++ ./domains/program/dmesg.te	2004-07-27 17:03:42.000000000 +1000
@@ -23,3 +23,6 @@
 allow dmesg_t sysadm_tty_device_t:chr_file { ioctl };
 allow dmesg_t var_log_t:file { getattr write };
 read_locale(dmesg_t)
+
+# for when /usr is not mounted
+dontaudit dmesg_t file_t:dir search;
diff -ru /usr/src/se/policy/domains/program/hostname.te ./domains/program/hostname.te
--- /usr/src/se/policy/domains/program/hostname.te	2004-05-12 05:10:33.000000000 +1000
+++ ./domains/program/hostname.te	2004-07-27 17:05:00.000000000 +1000
@@ -19,3 +19,6 @@
 allow hostname_t self:unix_stream_socket create_stream_socket_perms;
 dontaudit hostname_t var_t:dir search;
 allow hostname_t fs_t:filesystem getattr;
+
+# for when /usr is not mounted
+dontaudit hostname_t file_t:dir search;
diff -ru /usr/src/se/policy/domains/program/unused/amavis.te ./domains/program/unused/amavis.te
--- /usr/src/se/policy/domains/program/unused/amavis.te	2004-03-18 15:36:08.000000000 +1100
+++ ./domains/program/unused/amavis.te	2004-07-21 19:08:13.000000000 +1000
@@ -18,6 +18,7 @@
 
 allow initrc_t amavisd_lib_t:dir { search read write rmdir remove_name unlink };
 allow initrc_t amavisd_lib_t:file unlink;
+allow initrc_t amavisd_var_run_t:dir setattr;
 allow amavisd_t self:capability { chown dac_override setgid setuid };
 
 allow amavisd_t usr_t:{ file lnk_file } { getattr read };

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2004-08-02 12:34 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-08-02 12:34 a trivial patch Russell Coker

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.