All of lore.kernel.org
 help / color / mirror / Atom feed
* A small patch for auditd.te
@ 2005-04-22 22:07 Paul Moore
  0 siblings, 0 replies; 2+ messages in thread
From: Paul Moore @ 2005-04-22 22:07 UTC (permalink / raw)
  To: SELinux

Below is my attempt at fixing the audit policy so that the auditd and 
auditctl work correctly at boot time.  I tested this on the latest FC4 
bits augmented with Dan's MLS policy RPM and the latest audit RPMs from 
David Woodhouse's repository.

Index: auditd.te
===================================================================
RCS file: 
/cvsroot/selinux/nsa/selinux-usr/policy/domains/program/unused/auditd.te,v
retrieving revision 1.6
diff -r1.6 auditd.te
4a5,6
 > # Some fixes by Paul Moore <paul.moore@hp.com>
 > #
15a18
 > allow auditd_t self:process setsched;
34a38
 > allow auditctl_t init_t:fd use;
38a43
 > role system_r types auditctl_t;
42a48,51
 > allow initrc_t auditctl_exec_t:file rx_file_perms;
 > allow initrc_t auditd_etc_t:file r_file_perms;
 > domain_auto_trans(initrc_t, auditctl_exec_t, auditctl_t)

-- 
. paul moore . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
. paul.moore@hp.com                                      hewlett packard
. (603) 884-5056                                          linux security

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

^ permalink raw reply	[flat|nested] 2+ messages in thread
* A small patch for auditd.te
@ 2005-04-25 14:52 Paul Moore
  0 siblings, 0 replies; 2+ messages in thread
From: Paul Moore @ 2005-04-25 14:52 UTC (permalink / raw)
  To: selinux@tycho.nsa.gov

* My apologies if this is a duplicate, my first message seems to have
   been lost.

Below is my attempt at fixing the audit policy so that the auditd and
auditctl work correctly at boot time.  I tested this on the latest FC4
bits augmented with Dan's MLS policy RPM and the latest audit RPMs from
David Woodhouse's repository.

Index: auditd.te
===================================================================
RCS file:
/cvsroot/selinux/nsa/selinux-usr/policy/domains/program/unused/auditd.te,v
retrieving revision 1.6
diff -r1.6 auditd.te
4a5,6
> # Some fixes by Paul Moore <paul.moore@hp.com>
> #
15a18
> allow auditd_t self:process setsched;
34a38
> allow auditctl_t init_t:fd use;
38a43
> role system_r types auditctl_t;
42a48,51
> allow initrc_t auditctl_exec_t:file rx_file_perms;
> allow initrc_t auditd_etc_t:file r_file_perms;
> domain_auto_trans(initrc_t, auditctl_exec_t, auditctl_t)

-- 
. paul moore . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
. paul.moore@hp.com                                      hewlett packard
. (603) 884-5056                                          linux security

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-04-25 14:58 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-04-25 14:52 A small patch for auditd.te Paul Moore
  -- strict thread matches above, loose matches on Subject: below --
2005-04-22 22:07 Paul Moore

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.