All of lore.kernel.org
 help / color / mirror / Atom feed
* [refpolicy] Might be a bug in crond_system_entry
@ 2010-05-13 16:01 Daniel J Walsh
  2010-05-13 17:22 ` Christopher J. PeBenito
  0 siblings, 1 reply; 2+ messages in thread
From: Daniel J Walsh @ 2010-05-13 16:01 UTC (permalink / raw)
  To: refpolicy

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

interface(`cron_system_entry',`
 gen_require(`
  type crond_t, system_cronjob_t;
 ')

 domtrans_pattern(system_cronjob_t, $2, $1)
 domtrans_pattern(crond_t, $2, $1)
  This line is questionable.  Might have even been added by me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkvsImsACgkQrlYvE4MpobOtAQCguKNCtt1uDMPFpEdn+GlJpXD4
GeYAn1TEClBt8m6dJGbPR99NyA20dhsD
=dwd0
-----END PGP SIGNATURE-----

^ permalink raw reply	[flat|nested] 2+ messages in thread
* [refpolicy] Might be a bug in crond_system_entry
  2010-05-13 16:01 [refpolicy] Might be a bug in crond_system_entry Daniel J Walsh
@ 2010-05-13 17:22 ` Christopher J. PeBenito
  0 siblings, 0 replies; 2+ messages in thread
From: Christopher J. PeBenito @ 2010-05-13 17:22 UTC (permalink / raw)
  To: refpolicy

On Thu, 2010-05-13 at 12:01 -0400, Daniel J Walsh wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> interface(`cron_system_entry',`
>  gen_require(`
>   type crond_t, system_cronjob_t;
>  ')
> 
>  domtrans_pattern(system_cronjob_t, $2, $1)
>  domtrans_pattern(crond_t, $2, $1)
>   This line is questionable.  Might have even been added by me.

I believe the intention is to handle the case where someone puts the
command directly into the /etc/crontab, rather than in /etc/cron.*/

eg, in /etc/crontab:

0 * * * * root /usr/bin/my_entrypoint


-- 
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2010-05-13 17:22 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-05-13 16:01 [refpolicy] Might be a bug in crond_system_entry Daniel J Walsh
2010-05-13 17:22 ` Christopher J. PeBenito

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.