* [refpolicy] support_misc_patterns.spt.patch
@ 2010-08-26 23:23 Daniel J Walsh
0 siblings, 0 replies; 2+ messages in thread
From: Daniel J Walsh @ 2010-08-26 23:23 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F14/support_misc_patterns.spt.patch
Hide leaked sockets on domtrans.
Remove open from inherited fifo files.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkx292EACgkQrlYvE4MpobMF4wCfeEH+RDa+ijhK8XiiXU1+3ezn
UOkAoNg3Gd8LUJQEsCIC4gAgDrwg+bfD
=hgdY
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 2+ messages in thread
* [refpolicy] support_misc_patterns.spt.patch
@ 2010-02-23 21:59 Daniel J Walsh
0 siblings, 0 replies; 2+ messages in thread
From: Daniel J Walsh @ 2010-02-23 21:59 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F13/support_misc_patterns.spt.patch
http://people.fedoraproject.org/~dwalsh/SELinux/F13/support_obj_perm_sets.spt.patch
Added new macro
rw_inherited_fifo_file_perms
rw_inherited_file_perms
To eliminate the open call. So you are allowed to inherit passed in
file descriptors but not open them.
socket_class_set needs to add socket.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2010-08-26 23:23 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-08-26 23:23 [refpolicy] support_misc_patterns.spt.patch Daniel J Walsh
-- strict thread matches above, loose matches on Subject: below --
2010-02-23 21:59 Daniel J Walsh
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.