SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: latest diff This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Daniel J Walsh <dwalsh_at_redhat.com> Date: Sat, 19 Mar 2005 11:36:05 -0500 Christopher J. PeBenito wrote: >On Sat, 2005-03-19 at 01:53 -0500, Daniel J Walsh wrote: > > >>I think we can remove the hostname policy, it adds little value. >> >> >[cut] > > >>I think it would work fine without hostname policy. I think we could >>probably get rid of consoletype also. >> >> > >I don't remember why hostname and consoletype were added in the first >place, but a quick look through them makes me think that its so we don't >have to give sys_admin capability to initrc_t when these programs are >run from init scripts. Sys_admin is a huge set a privileges, so I'd say >its worthwhile to keep them around. > > > Ok, that is what I saw. I saw the sys_admin avc messages, but there was no failure in setting up the hostname. So I put a dontaudit in dhcpc and everything seems to work. Does anyone know if these apps actually need this priv or are just asking for it even though they don't need it. Problem with hostname is that lots of tools are doing stuff like hostname >> logfile. Which causes hostname to need write access to postgress_log_t, ... >>plain text document attachment (diff) >>+bool use_syslogng false; >>+ >>+if (use_syslogng) { >>+allow syslogd_t proc_kmsg_t:file write; >>+allow syslogd_t self:capability { sys_admin chown }; >>+} >> >> > >Shouldn't this go in the ifdef(`klogd.te',`',` block? Its already >there for syslogds that also do the klogd functions, like syslog-ng. In >fact, I think that block was originally added for syslog-ng. That >should eliminate the need for a boolean too. > > > The protections are not needed for standard syslog, so I think we should have a boolean saying whether you are using standard syslog of syslog-ng (Targeted policy does not ship klog. Now maybe the other proc_kmsg stuff should be under the boolean? Maybe this should be only for Red Hat since we do not ship klog.te in targeted policy. Or should we ship klog.te for targeted policy? -- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Sat 19 Mar 2005 - 11:38:23 EST This message: [ Message body ] Next message: Karl MacMillan: "RE: [RFC & PATCH] inherited type definition." Previous message: Christopher J. PeBenito: "Re: latest diff" In reply to: Christopher J. PeBenito: "Re: latest diff" Next in thread: Thomas Bleher: "Re: latest diff" Reply: Thomas Bleher: "Re: latest diff" Reply: Russell Coker: "Re: latest diff" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom