* [refpolicy] services_automount.patch
@ 2008-09-24 20:30 Daniel J Walsh
2008-10-08 20:07 ` Christopher J. PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2008-09-24 20:30 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_automount.patch
Add initrc script support
allow admin to start/stop service
Admin needs admin_pattern on all file types
Additional files in /var/run need correct label
creates a fifo_file in /var/run
read/write autofs device
uses fuse devices
calls getpw* so needs auth_use_nsswitch
users kerberos keytab files
searches nfs state
can manipulate samba files
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkjao4IACgkQrlYvE4MpobMHSwCg1ZREHdBQ16pGs0WgSMJEGVEF
58cAoMvPGg0a7xMrB6CRCLezXrL4Gwfz
=wFdD
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
2008-09-24 20:30 Daniel J Walsh
@ 2008-10-08 20:07 ` Christopher J. PeBenito
2008-10-09 1:51 ` Daniel J Walsh
0 siblings, 1 reply; 9+ messages in thread
From: Christopher J. PeBenito @ 2008-10-08 20:07 UTC (permalink / raw)
To: refpolicy
On Wed, 2008-09-24 at 16:30 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_automount.patch
>
> Add initrc script support
>
> allow admin to start/stop service
>
> Admin needs admin_pattern on all file types
>
> Additional files in /var/run need correct label
>
> creates a fifo_file in /var/run
>
> read/write autofs device
>
> uses fuse devices
>
> calls getpw* so needs auth_use_nsswitch
>
> users kerberos keytab files
>
> searches nfs state
>
> can manipulate samba files
Merged except for the dev_rw_autofs()
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
2008-10-08 20:07 ` Christopher J. PeBenito
@ 2008-10-09 1:51 ` Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2008-10-09 1:51 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christopher J. PeBenito wrote:
> On Wed, 2008-09-24 at 16:30 -0400, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_automount.patch
>>
>> Add initrc script support
>>
>> allow admin to start/stop service
>>
>> Admin needs admin_pattern on all file types
>>
>> Additional files in /var/run need correct label
>>
>> creates a fifo_file in /var/run
>>
>> read/write autofs device
>>
>> uses fuse devices
>>
>> calls getpw* so needs auth_use_nsswitch
>>
>> users kerberos keytab files
>>
>> searches nfs state
>>
>> can manipulate samba files
>
> Merged except for the dev_rw_autofs()
>
Added automount device patch
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkjtY64ACgkQrlYvE4MpobMBZgCfYfwzrHRIUGhLWUumcuBwuv/A
P8wAn368sNS0d1oRnYrk4nx4FCtB1Zc6
=zlQq
-----END PGP SIGNATURE-----
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: services_automount.patch
Url: http://oss.tresys.com/pipermail/refpolicy/attachments/20081008/ea06a2bb/attachment.pl
-------------- next part --------------
A non-text attachment was scrubbed...
Name: services_automount.patch.sig
Type: application/octet-stream
Size: 72 bytes
Desc: not available
Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20081008/ea06a2bb/attachment.obj
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
@ 2009-03-05 16:29 Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2009-03-05 16:29 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_automount.patch
Automount needs to rw autofs, can mount on any directory
Reads nfs files
Sends a signal to mount command
users kerberos keytab files
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmv/ewACgkQrlYvE4MpobP9/QCgtZgzCf1rFP6HLOUjh1tI43EI
fykAnjwsN8XTsIJLnQD1297RtkbR7PVK
=z7GD
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
@ 2009-06-08 21:50 Daniel J Walsh
2009-07-29 12:58 ` Christopher J. PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2009-06-08 21:50 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_automount.patch
rpcd sends signals to automount
automount uses kernberos keytabs, needs to be able to mount and read nfs
files.
Sends signals to mount command
read/write autofs device.
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
2009-06-08 21:50 Daniel J Walsh
@ 2009-07-29 12:58 ` Christopher J. PeBenito
0 siblings, 0 replies; 9+ messages in thread
From: Christopher J. PeBenito @ 2009-07-29 12:58 UTC (permalink / raw)
To: refpolicy
On Mon, 2009-06-08 at 17:50 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_automount.patch
>
> rpcd sends signals to automount
>
>
> automount uses kernberos keytabs, needs to be able to mount and read
> nfs
> files.
>
> Sends signals to mount command
>
> read/write autofs device.
Merged.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
@ 2009-11-12 21:14 Daniel J Walsh
2010-02-19 18:50 ` Christopher J. PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2009-11-12 21:14 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F12/services_automount.patch
Automount searches all filesystem directories and reads nfs files.
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
2009-11-12 21:14 Daniel J Walsh
@ 2010-02-19 18:50 ` Christopher J. PeBenito
0 siblings, 0 replies; 9+ messages in thread
From: Christopher J. PeBenito @ 2010-02-19 18:50 UTC (permalink / raw)
To: refpolicy
On Thu, 2009-11-12 at 16:14 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F12/services_automount.patch
>
> Automount searches all filesystem directories and reads nfs files.
Merged.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_automount.patch
@ 2010-08-26 20:50 Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2010-08-26 20:50 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F14/services_automount.patch
automount can execute shutdown.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkx204wACgkQrlYvE4MpobPUOQCgkx7lMNzYKEz0sScoM2mkL4hD
q88An00lMEG3Jqp5cbPKrgkSmfHS+aH/
=PpXO
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2010-08-26 20:50 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-08-26 20:50 [refpolicy] services_automount.patch Daniel J Walsh
-- strict thread matches above, loose matches on Subject: below --
2009-11-12 21:14 Daniel J Walsh
2010-02-19 18:50 ` Christopher J. PeBenito
2009-06-08 21:50 Daniel J Walsh
2009-07-29 12:58 ` Christopher J. PeBenito
2009-03-05 16:29 Daniel J Walsh
2008-09-24 20:30 Daniel J Walsh
2008-10-08 20:07 ` Christopher J. PeBenito
2008-10-09 1:51 ` Daniel J Walsh
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.