SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: new policy This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Stephen Smalley <sds_at_tislabs.com> Date: Tue, 1 Oct 2002 12:53:13 -0400 (EDT) On Mon, 30 Sep 2002, Russell Coker wrote: > The archive newfiles.tar.gz of new policy files I've written which aren't yet > in the CVS. > > The patch can_net.diff which removes duplicate calls to can_network(). This > makes the resulting policy.conf smaller and makes it easier to grep. > > The patch mta.diff has some new changes related to mail servers. Of > particular note, I finally got qmail fully working in enforcing mode - and > the policy has changed a lot. > > The netscape changes in netscape.diff rely on the new file x_client_macros.te, > it is about splitting the X access part of it into a separate file so the > same policy is also used by other programs that use X but which are not > entirely trusted. > > The file diff contains other small patches, including some that are required > for the netscape patch, and for the new xauth policy that is needed for a > separate type for the ~/.Xauthority file. Thanks, merged. There were some rejects, but I think that they were just duplicate diffs from earlier patches. I also dropped capabilities from netscape. Do we need an entry for the .Xauthority files in types.fc? -- Stephen D. Smalley, NAI Labs ssmalley@nai.com -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Tue 1 Oct 2002 - 13:07:07 EDT This message: [ Message body ] Next message: ml-selinux_at_unpatched.net: "Bug in selinux_task_reparent_to_init (?)" Previous message: Stephen Smalley: "Re: patch for home_root_t" In reply to: Russell Coker: "new policy" Next in thread: Russell Coker: "Re: new policy" Reply: Russell Coker: "Re: new policy" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom