* Small patch to udev.te
@ 2005-04-25 22:02 Paul Moore
0 siblings, 0 replies; only message in thread
From: Paul Moore @ 2005-04-25 22:02 UTC (permalink / raw)
To: selinux@tycho.nsa.gov
Here is another small patch to fix a problem with udev on bootup.
Index: udev.te
===================================================================
RCS file:
/cvsroot/selinux/nsa/selinux-usr/policy/domains/program/unused/udev.te,v
retrieving revision 1.42
diff -u -r1.42 udev.te
--- udev.te 22 Apr 2005 15:02:30 -0000 1.42
+++ udev.te 25 Apr 2005 22:00:44 -0000
@@ -33,7 +33,7 @@
allow udev_t self:unix_stream_socket {connectto
create_stream_socket_perms};
allow udev_t self:unix_dgram_socket create_socket_perms;
allow udev_t self:fifo_file rw_file_perms;
-allow udev_t device_t:file rw_file_perms;
+allow udev_t device_t:file { unlink rw_file_perms };
allow udev_t device_t:sock_file create_file_perms;
allow udev_t device_t:lnk_file create_lnk_perms;
allow udev_t { device_t device_type }:{ chr_file blk_file } {
relabelfrom relabelto create_file_perms };
--
. paul moore . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
. paul.moore@hp.com hewlett packard
. (603) 884-5056 linux security
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2005-04-25 22:02 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-04-25 22:02 Small patch to udev.te Paul Moore
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.