1 |
commit: de0e1dda1d087b718bbd250ab46c24f0a04a713a |
2 |
Author: Chris PeBenito <cpebenito <AT> tresys <DOT> com> |
3 |
AuthorDate: Wed Apr 24 20:14:52 2013 +0000 |
4 |
Commit: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be> |
5 |
CommitDate: Wed May 1 18:21:50 2013 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=de0e1dda |
7 |
|
8 |
Update Changelog for release. |
9 |
|
10 |
--- |
11 |
policy/modules/contrib/Changelog | 1071 ++++++++++++++++++++++++++++++++++++++ |
12 |
1 files changed, 1071 insertions(+), 0 deletions(-) |
13 |
|
14 |
diff --git a/policy/modules/contrib/Changelog b/policy/modules/contrib/Changelog |
15 |
new file mode 100644 |
16 |
index 0000000..8b9356a |
17 |
--- /dev/null |
18 |
+++ b/policy/modules/contrib/Changelog |
19 |
@@ -0,0 +1,1071 @@ |
20 |
+* Wed Apr 24 2013 Chris PeBenito <selinux@××××××.com> - 2.20130424 |
21 |
+Chris PeBenito (18): |
22 |
+ Rewrite of mcelog module from Guido Trentalancia |
23 |
+ Remove unnecessary lines in mcelog.te. |
24 |
+ Slight rearrangement in mcelog.te. |
25 |
+ Module version bump for mcelog update from Guido Trentalancia. |
26 |
+ Module version bump for ntp module fixes from Dominick Grift. |
27 |
+ Module version bump for fc substitutions optimizations from Sven |
28 |
+ Vermeulen. |
29 |
+ Module version bump for postfix/mta misc fixes from Sven Vermeulen. |
30 |
+ Module version bump for init_daemon_run_dirs usage from Sven Vermeulen. |
31 |
+ Turn off all tunables by default, from Guido Trentalancia. |
32 |
+ Module version bump for tunable default change. |
33 |
+ Module version bump for saslauthd tcp mysql connections from Mika Flueger. |
34 |
+ Move kernel request line in quota. |
35 |
+ Module version bump for quota kernel module request from Mika Pflueger. |
36 |
+ Module version bump for djbdns ports fixes from Russell Coker. |
37 |
+ Remove stray + in keystone.te. |
38 |
+ Whitespace fixes in cron.fc. |
39 |
+ Module version bump for pulseaudio type_transition conflict fix from Sven |
40 |
+ Vermeulen. |
41 |
+ Bump module versions for release. |
42 |
+ |
43 |
+Dominick Grift (889): |
44 |
+ Initial BIRD Internet Routing Daemon policy |
45 |
+ oident daemon fixes |
46 |
+ Introduce ntp_conf_t |
47 |
+ Allow ntp_admin() to manage ntp_drift_t content. |
48 |
+ List etc_t directories |
49 |
+ Use "Role allowed access." for consistency |
50 |
+ Use permissions sets for compatibility. |
51 |
+ Remove getattr permision from ntp_admin() |
52 |
+ Initial Sensord policy module |
53 |
+ Various block_suspend capability2 support from Fedora |
54 |
+ Gitolite3 support from Fedora |
55 |
+ /var/lib/sqlgrey is greylist milter data from Fedora |
56 |
+ Terminal related fixes for plymouthd from Fedora Support block_suspend |
57 |
+ capability2 for plymouth |
58 |
+ Support minimal polkit in new location |
59 |
+ Support ldap for user authentication from Fedora |
60 |
+ Sanlock sends kill signals to non-root processes from Fedora Various |
61 |
+ other capabilities for sanlock from Fedora |
62 |
+ Initial support for sqlgrey from Fedora |
63 |
+ Tor reads network sysctls from Fedora |
64 |
+ GPG agent reads /dev/random from Fedora |
65 |
+ Freshclam reads system and network state from Fedora |
66 |
+ Execute wpa_cli in the NetworkManager_t domain for wicd from Fedora |
67 |
+ lpstat.cups reads fips_enabled from Fedora |
68 |
+ Initial system tap compile server policy module |
69 |
+ Systemtap server admin manages stapserver_var_lib_t content |
70 |
+ Telepathy Idle reads gschemas.compiled from Fedora |
71 |
+ Initial slpd policy module |
72 |
+ Initial lightsquid policy module |
73 |
+ Initial wdmd policy module |
74 |
+ Initial mailscanner policy module and some depencies. |
75 |
+ Support slpd log rotation |
76 |
+ Initial numad policy module |
77 |
+ Open log files for append only |
78 |
+ CGClear reads CGConfig files from Fedora Cosmetic changes to cgroup |
79 |
+ policy module File contexts of cgroup app executables files in |
80 |
+ /sbin also apply to /usr/sbin Make cgroup_admin() a bit more |
81 |
+ compact |
82 |
+ Initial svnserve policy module |
83 |
+ Various small changes to ucspitcp |
84 |
+ Initial fcoe policy module |
85 |
+ Initial lldpad policy module |
86 |
+ fcoemon sends to lldpad with a dgram socket |
87 |
+ Initial quantum policy module |
88 |
+ Initial dspam policy module |
89 |
+ Module version bump for Telepathy file context spec fixes from Laurent |
90 |
+ Bigonville. |
91 |
+ Initial isns policy module |
92 |
+ Various changes to tcs policy module |
93 |
+ Initial ctdb policy module |
94 |
+ Various changes to the sblim policy module and its dependencies |
95 |
+ Initial polipo policy module |
96 |
+ Module version bump for networkmanager fixes |
97 |
+ Fixes to the polipo policy module |
98 |
+ Module version bump for smartmon fixes from Laurent Bigonville. |
99 |
+ Module version bump for accountsd file context spec fix from Laurent |
100 |
+ Bigonville. |
101 |
+ Various changes to the raid module |
102 |
+ Module version bump for rtkit file context spec fix from Laurent |
103 |
+ Bigonville |
104 |
+ Initial couchdb policy module |
105 |
+ Changes to the bind policy module |
106 |
+ Initial dnssectrigger policy module |
107 |
+ Initial man2html policy module |
108 |
+ Initial openhpi policy module |
109 |
+ Bind sends/receives http server instead of client packets conditionally |
110 |
+ Two file context regular expression fixes by Eric Paris |
111 |
+ Type mdadm_t is no longer a unconfined type |
112 |
+ Initial pkcs policy module |
113 |
+ Initial cfengine policy module |
114 |
+ Initial keystone policy module |
115 |
+ Initial l2tp policy module |
116 |
+ Initial mongodb policy module |
117 |
+ cfengine whitespace cleanup |
118 |
+ Changes to the accountsservice policy module |
119 |
+ Changes to the acct policy module |
120 |
+ Changes to the ada policy module |
121 |
+ changes to the afs policy module |
122 |
+ Changes to the accountsservice policy module |
123 |
+ Changes to the aiccu policy module |
124 |
+ Changes to the aide policy module |
125 |
+ Syntax error in afs_admin() |
126 |
+ Changes to the aisexec policy module |
127 |
+ Changes to the alsa policy module |
128 |
+ Changes to the amanda policy module |
129 |
+ Changes to the amavisd policy module and relevant dependencies |
130 |
+ Changes to the amtu policy module |
131 |
+ Changes to the anaconda policy module |
132 |
+ Changes to the abrt policy module and relevant dependencies |
133 |
+ numad sends/receives msgs from Fedora |
134 |
+ Amtu executable file in installed in /usr/sbin in Fedora |
135 |
+ The (usr/)? expression does not work consistently so better not use it |
136 |
+ at all |
137 |
+ Changes to the httpd policy module |
138 |
+ Merge branch 'master' of |
139 |
+ ssh://dgrift@××××××××××.com/home/git/refpolicy-contrib |
140 |
+ Fixes to the apache policy module and dependencies |
141 |
+ Changes to the apcupsd policy module |
142 |
+ Role attributes for lightsquid application domain |
143 |
+ Changes to the mailscanner module |
144 |
+ Changes to the svnserve policy module |
145 |
+ Changes to the quantum policy module |
146 |
+ Changes to the dspam module |
147 |
+ Changes to the ctdb policy module |
148 |
+ Changes to the couchdb policy module |
149 |
+ Changes to the openhpid policy module |
150 |
+ Changes to the keystone policy module |
151 |
+ Changes to the l2tp policy module |
152 |
+ Changes to the apm module and relevant dependencies |
153 |
+ Changes to the arpwatch policy module |
154 |
+ Changes to the apcupsd policy module |
155 |
+ Changes to the abrt policy module |
156 |
+ Changes to the apache policy module |
157 |
+ Changes to the asterisk policy module and dependencies |
158 |
+ Changes to the authbind policy module |
159 |
+ Changes to the automount policy module |
160 |
+ Change acpid lock file context spec |
161 |
+ Changes to the avahi policy module and dependencies |
162 |
+ Changes to the awstats policy module |
163 |
+ Changes to the bacula policy module |
164 |
+ Changes to the bcfg2 policy module |
165 |
+ Changes to the apt policy module |
166 |
+ Changes to the apache policy module |
167 |
+ Changes to the backup module |
168 |
+ Changes to the bind policy module |
169 |
+ Bird module clean up |
170 |
+ Fix arpwatch connected_stream_socket_perms |
171 |
+ Changes to the bitlbee policy module |
172 |
+ Changes to the blueman policy module |
173 |
+ Changes to the bluetooth policy module |
174 |
+ Changes to the brctl policy module |
175 |
+ Changes to the apache policy module |
176 |
+ Changes to the bugzilla policy module |
177 |
+ Changes to the calamaris policy module |
178 |
+ Implement lightsquid_admin() |
179 |
+ Changes to the apache policy module and dependencies |
180 |
+ Initial boinc policy module |
181 |
+ Initial callweaver policy module |
182 |
+ Changes to the canna policy module |
183 |
+ Changes to the ccs policy module |
184 |
+ Changes to the cdrecord policy module |
185 |
+ Changes to the certmaster policy module and various role attribute fixes |
186 |
+ cdrecord needs to read and write callers unix domain stream socket not |
187 |
+ create it |
188 |
+ Changes to the certmonger policy module and its dependencies |
189 |
+ Initial cachefilesd policy module |
190 |
+ Changes to the certwatch policy module |
191 |
+ Changes to the chronyd policy module |
192 |
+ Changes to the cipe policy module |
193 |
+ Changes to the clamav policy module |
194 |
+ Various network clean up |
195 |
+ Add dev_rw_cachefiles() to cachefilesd policy module |
196 |
+ Changes to the clockspeed policy module |
197 |
+ Changes to the clogd policy module |
198 |
+ Changes to the cmirrord policy module |
199 |
+ Changes to the cobbler policy module |
200 |
+ Changes to the colord policy module |
201 |
+ Changes to the comsat policy module |
202 |
+ Initial collectd policy module |
203 |
+ Initial condor policy module and relevant dependencies |
204 |
+ Changes to the consolekit policy module and relevant dependencies |
205 |
+ Changes to the corosync policy module and relevant dependencies |
206 |
+ Clean up couchdb network rules |
207 |
+ Changes to the courier policy module |
208 |
+ Changes to the cpucontrol policy module |
209 |
+ Changes to the cpufreqselector policy module |
210 |
+ Changes to the cron policy module and relevant dependencies |
211 |
+ Changes to the cups policy module and relevant dependencies |
212 |
+ Changes to the cvs policy module |
213 |
+ Remove redundant connect avperms |
214 |
+ Changes to the cyphesis policy module |
215 |
+ Remove redundant rules from apache_admin() |
216 |
+ Changes to the cyrus policy module |
217 |
+ Changes to the daemontools policy module |
218 |
+ Changes to the dante policy module |
219 |
+ Modify dbadm boolean descriptions |
220 |
+ Changes to the dbus policy module and its dependencies |
221 |
+ Changes to the dcc policy module |
222 |
+ Changes to the ddclient policy module |
223 |
+ Changes to the ddcprobe policy module |
224 |
+ Changes to the denyhosts policy module |
225 |
+ Changes to the devicekit policy module and relevant dependencies |
226 |
+ Changes to the dhcpd policy module |
227 |
+ Changes tothe dictd policy module |
228 |
+ Changes to the discc policy module |
229 |
+ Changes to the djbdns policy module |
230 |
+ Changes to the dkim policy module |
231 |
+ Changes to the dmidecode policy module |
232 |
+ Module bump for Laurent Bigonville trousers init script file context |
233 |
+ specification fix |
234 |
+ Module bump for Laurent Bigonville libvirt init script file context |
235 |
+ specification fix |
236 |
+ Changes to the dnsmasq policy module and relevant dependencies |
237 |
+ Changes to the dovecot policy module |
238 |
+ Changes to the dpkg policy module |
239 |
+ Changes to the entropyd policy module |
240 |
+ Changes to the evolution policy module |
241 |
+ Changes to the exim policy module and relevant dependencies |
242 |
+ Changes to the cron policy module |
243 |
+ Changes to the fail2ban policy module |
244 |
+ fcoemon XML clean up |
245 |
+ Changes to the fetchmail policy module |
246 |
+ Changes to the fingerd policy module |
247 |
+ Initial firewalld policy module |
248 |
+ Changes to the firstboot policy module |
249 |
+ Changes to the fprint policy module and relevant dependencies |
250 |
+ Changes to the ftp module |
251 |
+ Changes to the games policy module |
252 |
+ Clean up evolution and cdrecord XML |
253 |
+ Changes to the gatekeeper policy module |
254 |
+ Changes to the gift policy module |
255 |
+ Changes to the git policy module |
256 |
+ Changes to the gitosis policy module |
257 |
+ Changes to the glance policy module |
258 |
+ Initial glusterfs policy module |
259 |
+ Add gatekeeper newline |
260 |
+ Deprecate glusterd_admin() use glusterfs_admin() instead |
261 |
+ Portage module version bump for autofs support by Matthew Thode and |
262 |
+ clean up |
263 |
+ cfengine: This location is now labeled with a cfengine private type |
264 |
+ Changes to the slpd policy module |
265 |
+ Changes to the gnomeclock policy module and relevant dependencies |
266 |
+ Changes to the gpg policy module |
267 |
+ Changes to the gpm policy module |
268 |
+ Changes to the gpsd policy module and relevant dependencies |
269 |
+ changes to the guest policy module |
270 |
+ Changes to the gnomeclock policy module |
271 |
+ Deprecate various DBUS interfaces and relevant dependencies |
272 |
+ Changes to the cachefilesd policy module |
273 |
+ Remove file context specification for kgpg which is a GUI frontend to |
274 |
+ GPG. Domain transition to gpg_t will happen when kgpg runs gpg. |
275 |
+ (rhbz#862229) |
276 |
+ Initial mandb policy module |
277 |
+ Changes to the hadoop policy module |
278 |
+ Changes to the hald policy module |
279 |
+ Changes to the hddtemp policy module |
280 |
+ Changes to the howl policy module |
281 |
+ changes to the mandb policy module |
282 |
+ Changes to the dbus policy module |
283 |
+ Changes to the rpm policy module |
284 |
+ Changes to the i18n_input policy module |
285 |
+ Changes to the icecast policy module |
286 |
+ Changes to the ifplugd policy module |
287 |
+ Changes to the imaze policy module |
288 |
+ Changes to the inetd policy module and relevant dependencies |
289 |
+ Changes to the innd policy module |
290 |
+ Changes to the irc policy module |
291 |
+ Changes to the ircd policy module |
292 |
+ Changes to the irc policy module |
293 |
+ Changes to the dbus policy module |
294 |
+ Changes to the avahi policy module |
295 |
+ Changes to the bluetooth policy module |
296 |
+ Changes to the aiccu policy module |
297 |
+ Changes to the bacula policy module |
298 |
+ Changes to the boinc policy module |
299 |
+ Changes to the bugzilla policy module |
300 |
+ Changes to the ccs policy module |
301 |
+ Changes to the clamav policy module |
302 |
+ Changes to the cobbler policy module |
303 |
+ Changes to the cyphesis policy module |
304 |
+ Changes to the dante policy module |
305 |
+ Changes to the dbskk policy module |
306 |
+ Changes to the ddclient policy module |
307 |
+ Changes to the denyhosts policy module |
308 |
+ Changes to the dnssectrigger policy module |
309 |
+ Changes to the dovecot policy module |
310 |
+ Changes to the drbd policy module |
311 |
+ Changes to the evolution policy module |
312 |
+ Changes to the fail2ban policy module |
313 |
+ Changes to the firewalld policy module |
314 |
+ Changes to the firstboot policy module |
315 |
+ Changes to the games policy module |
316 |
+ Changes to the gift policy module |
317 |
+ Changes to the glance policy module |
318 |
+ Changes to the hald policy module |
319 |
+ Changes to the dbus policy module |
320 |
+ Changes to the git policy module |
321 |
+ Changes to the polipo policy module |
322 |
+ Changes to the firewalld policy module |
323 |
+ Changes to the gpg policy module |
324 |
+ Tab clean up in ircbalance file context file |
325 |
+ Changes to the irqbalance policy module |
326 |
+ Tab clean up in iscsi file context file |
327 |
+ Changes to the iscsi policy module |
328 |
+ Tab clean up in jabber file context file |
329 |
+ Changes to the jabberd policy module |
330 |
+ Changes to the pyicqt policy module |
331 |
+ Tab clean up in java file context file |
332 |
+ Changes to the java policy module |
333 |
+ Changes to the dbus policy module |
334 |
+ Changes to the gnome policy module |
335 |
+ Changes to the apache policy module |
336 |
+ Changes to the accountsd policy module |
337 |
+ Changes to the alsa policy module |
338 |
+ Changes to the evolution policy module |
339 |
+ Changes to the bluetooth policy module |
340 |
+ Changes to the games policy module |
341 |
+ Changes to the gift policy module |
342 |
+ Changes to the gpg policy module |
343 |
+ Changes to the hadoop policy module |
344 |
+ Tab clean up in kdump file context file |
345 |
+ Changes to the kdump policy module |
346 |
+ Changes to the gpg policy module |
347 |
+ Changes to the dbus policy module |
348 |
+ Changes to the evolution policy module |
349 |
+ Changes to the gpm policy module |
350 |
+ Version bump for evolution file context fixes by Laurent Bigonville |
351 |
+ Version bump for nut file context fixes by Laurent Bigonville |
352 |
+ Changes to the kdumpgui policy module |
353 |
+ Tab clean up in kerberos file context file |
354 |
+ Changes to the kerberos policy module and relevant dependencies |
355 |
+ Changes to the kerneloops policy module |
356 |
+ Tab clean up in kerberos file context file |
357 |
+ Changes to the kismet policy module |
358 |
+ Clean up amavis XML header |
359 |
+ Initial keyboardd policy module |
360 |
+ Tab clean up in ksmtuned file context file |
361 |
+ Changes to the ksmtuned policy module |
362 |
+ Tab clean up in ktalk file context file |
363 |
+ Changes to the ktalk policy module |
364 |
+ Changes to the kudzu policy module |
365 |
+ Initial iodine policy module |
366 |
+ Initial dirmngr policy module |
367 |
+ Changes to the iodine policy module |
368 |
+ Changes to the kerberos policy module |
369 |
+ Changes to the kdumpgui policy module |
370 |
+ Update deprecated interface calls ( gnome_read_config -> |
371 |
+ gnome_read_generic_home_content ) |
372 |
+ Changes to the mozilla policy module |
373 |
+ Changes to the thunderbird policy module |
374 |
+ Changes to the l2tp policy module |
375 |
+ Tab clean up in ldap file context file |
376 |
+ Changes to the ldap policy module |
377 |
+ Tab clean up in likewise file context file |
378 |
+ Changes to the likewise policy module |
379 |
+ Tab clean up in lircd file context file |
380 |
+ Changes to the lircd policy module |
381 |
+ Changes to the livecd policy module |
382 |
+ Tab clean up in loadkeys file context file |
383 |
+ Changes to the loadkeys policy module and relevant dependencies |
384 |
+ Tab clean up in lockdev file context file |
385 |
+ Changes to the lockdev policy module |
386 |
+ Tab clean up in logrotate file context file |
387 |
+ Changes to the logrotate policy module and relevant dependencies |
388 |
+ Tab clean up in logwatch file context file |
389 |
+ Changes to the logrotate policy module |
390 |
+ Changes to the logwatch policy module |
391 |
+ Tab clean up in lpd file context file |
392 |
+ Changes to the lpd policy module |
393 |
+ Tab clean up in cron policy module |
394 |
+ Changes to the lpd policy module |
395 |
+ Changes to the consolekit policy module |
396 |
+ Tab fix in cron policy module |
397 |
+ Tab clean up in mailman file context file |
398 |
+ Changes to the mailman policy module and relevant dependencies |
399 |
+ Tab clean up in mcelog file context file |
400 |
+ Changes to the mcelog policy module |
401 |
+ Tab clean up in mediawiki file context file |
402 |
+ Mediawiki XML clean up |
403 |
+ Tab clean up in memcached file context file |
404 |
+ Changes to the memcached policy module |
405 |
+ Changes to the apache policy module |
406 |
+ Tab clean up in milter file context file |
407 |
+ Changes to the milter policy module and relevant dependencies |
408 |
+ Changes to the modemmanager policy module |
409 |
+ Tab clean up in mojomojo file context file |
410 |
+ Changes to the mojomojo policy module and relevant dependencies |
411 |
+ Changes to the gpg policy module |
412 |
+ Changes to the mongodb policy module |
413 |
+ Changes to the mono policy module |
414 |
+ Changes to the monop policy module |
415 |
+ Tab clean up in mozilla file context file |
416 |
+ Changes to the mozilla policy module and relevant dependencies |
417 |
+ Changes to the mozilla policy module |
418 |
+ Changes to the apache policy module |
419 |
+ Tab clean up in mpd file context file |
420 |
+ Changes to the mpd policy module |
421 |
+ Tab clean up in mplayer file context file |
422 |
+ Changes to the evolution policy module |
423 |
+ Changes to the mplayer policy module |
424 |
+ Changes to the irc policy module |
425 |
+ Tab clean up in mrtg file context file |
426 |
+ Changes to the mrtg policy module |
427 |
+ Tab clean up in mta file context file |
428 |
+ Changes to the mta policy module and relevant dependencies |
429 |
+ Changes to the mta policy module and relevant dependencies |
430 |
+ Get rid of mozilla_conf_t as it is unused |
431 |
+ Changes to the logrotate policy module |
432 |
+ Changes to the logwatch policy module |
433 |
+ Changes to the java policy module |
434 |
+ Changes to the apache module and relevant dependencies |
435 |
+ Tab clean up in munin file context file |
436 |
+ Changes to the munin policy module and relevant dependencies |
437 |
+ Tab clean up in mysql file context file |
438 |
+ Changes to mysqld policy module |
439 |
+ Changes to various policy modules |
440 |
+ Changes to the munin policy module |
441 |
+ Changes to the dovecot policy module |
442 |
+ Changes to various policy modules |
443 |
+ Changes to the mta policy module |
444 |
+ Changes to the certmonger policy module and relavant dependencies |
445 |
+ Tab clean up in nagios file context file |
446 |
+ Changes to the nagios policy module and relevant dependencies |
447 |
+ Changes to the modutils policy module |
448 |
+ Tab cleanup in the nessus file context file |
449 |
+ Changes to the nessus policy module |
450 |
+ Tab clean up in the network manager file context file |
451 |
+ Changes to the networkmanager policy module and relevant dependencies |
452 |
+ Changes to the mozilla policy module |
453 |
+ Changes to the cobbler policy module |
454 |
+ Initial rngd policy module |
455 |
+ Tab clean up in the nis file context file |
456 |
+ Changes to the nis policy module |
457 |
+ Tab clean up in the nscd file context file |
458 |
+ Changes to the nscd policy module |
459 |
+ Tab clean up in the nsd file context file |
460 |
+ Changes to the nsd policy module |
461 |
+ Tab clean up in the nslcd file context file |
462 |
+ Changes to the nslcd policy module |
463 |
+ Tab clean up in the ntop file context file |
464 |
+ Changes to the ntop policy module |
465 |
+ Tab clean up in the ntp file context file |
466 |
+ Changes to the ntp policy module |
467 |
+ Changes to the numad policy module |
468 |
+ Tab clean up in the nut file context file |
469 |
+ Changes to the nut policy module |
470 |
+ Tab clean up in the nx file context file |
471 |
+ Changes to the nx policy module |
472 |
+ Changes to the oav policy module |
473 |
+ Initial obex policy module |
474 |
+ Tab clean up in the oddjob file context file |
475 |
+ Tab clean up in gpg policy module |
476 |
+ Changes to the oddjob policy module |
477 |
+ Changes to the mozilla policy module |
478 |
+ Initial pacemaker policy module |
479 |
+ Tab clean up in the oidentd file context file |
480 |
+ Changes to the oident policy module |
481 |
+ Tab clean up in the openca file context file |
482 |
+ Changes to the openca policy module |
483 |
+ Tab clean up in the openct file context file |
484 |
+ Changes to the openct policy module |
485 |
+ Tab clean up in the openvpn file context file |
486 |
+ Changes to the openvpn policy module |
487 |
+ Tab clean up in the pads file context file |
488 |
+ Changes to the pads policy module |
489 |
+ Tab clean up in the passenger file context file |
490 |
+ Changes to the passenger policy module and relevant dependencies |
491 |
+ Tab clean up in the pcmcia file context file |
492 |
+ Changes to the pcmcia policy module |
493 |
+ Tab clean up in the pcscd file context file |
494 |
+ Changes to the pcscd policy module and relevant dependencies |
495 |
+ Tab clean up in the pegasus file context file |
496 |
+ Changes to the pegasus policy module |
497 |
+ Tab clean up in the perdition file context file |
498 |
+ Changes to the perdition policy module |
499 |
+ Tab clean up in the pingd file context file |
500 |
+ Changes to the pingd policy module |
501 |
+ Changes to the plymouthd policy module |
502 |
+ Changes to the mozilla policy module |
503 |
+ Changes to the plymouth policy module |
504 |
+ Tab clean up in the podsleuth file context file |
505 |
+ Changes to the podsleuth policy module |
506 |
+ Tab clean up in the policykit file context file |
507 |
+ Changes to the policykit policy module and relevant dependencies |
508 |
+ Tab clean up in the portage file context file |
509 |
+ Changes to the portage policy module |
510 |
+ Tab clean up in the portmap file context file |
511 |
+ Changes to the portmap policy module |
512 |
+ Tab clean up in the portreserve file context file |
513 |
+ Changes to the portreserve policy module |
514 |
+ Tab clean up in the portslave file context file |
515 |
+ Changes to the portslave policy module and relevant dependencies |
516 |
+ Tab clean up in the postfix file context file |
517 |
+ Changes to the postfix policy module and relevant dependencies |
518 |
+ Fixes to various policy modules |
519 |
+ Tab clean up in the postfixpolicyd file context file |
520 |
+ Changes to the postfixpolicyd policy module |
521 |
+ Tab clean up in the postgrey file context file |
522 |
+ Changes to the postgrey policy module |
523 |
+ Tab clean up in the ppp file context file |
524 |
+ Changes to the ppp policy module and relevant dependencies |
525 |
+ Tab clean up in the prelink file context file |
526 |
+ Changes to the prelink policy module and relevant dependencies |
527 |
+ Tab clean up in the prelude file context file |
528 |
+ Changes to the prelude policy module |
529 |
+ Tab clean up in the privoxy file context file |
530 |
+ Changes to the privoxy policy module |
531 |
+ Tab clean up in the procmail file context file |
532 |
+ Changes to the procmail policy module |
533 |
+ Tab clean up in the psad file context file |
534 |
+ Changes to the psad policy module |
535 |
+ Changes to the ptchown policy module |
536 |
+ Tab clean up in the publicfile file context file |
537 |
+ Changes to the publicfile policy module |
538 |
+ Fix a fatal syntax error in mozilla_plugin_role() |
539 |
+ Changes to the plymouth policy module |
540 |
+ Changes to the policykit policy module |
541 |
+ Module version bump for fixes in shorewall, fail2ban and portage policy |
542 |
+ modules by Sven Vermeulen |
543 |
+ Tab clean up in the puppet file context file |
544 |
+ Changes to ther puppet policy module and relevant dependencies |
545 |
+ Initial pwauth policy module |
546 |
+ Tab clean up in the pxe file context file |
547 |
+ Changes to the pxe policy module |
548 |
+ Tab clean up in the pyzor file context file |
549 |
+ Changes to the pyzor policy module |
550 |
+ Tab clean up in the qemu file context file |
551 |
+ Changes to the qemu policy module |
552 |
+ Tab clean up in the virt file context file |
553 |
+ Changes to the virt policy module and relevant depedencies |
554 |
+ Changes to the virt policy module |
555 |
+ Changes to the cron policy module |
556 |
+ Changes to the qemu policy module |
557 |
+ Changes to the virt policy module |
558 |
+ Epylog wants sys_nice and setsched |
559 |
+ Tab clean up in the qmail file context file |
560 |
+ Changes to the qmail policy module |
561 |
+ Tab clean up in the qpid file context file |
562 |
+ Changes to the qpid policy module |
563 |
+ Tab clean up in the quota file context file |
564 |
+ Changes to the quota policy module and relevant dependencies |
565 |
+ Initial rabbitmq policy module |
566 |
+ Tab clean up in the radius file context file |
567 |
+ Changes to the radius policy module |
568 |
+ Tab clean up in the radvd file context file |
569 |
+ Changes to the radvd policy module |
570 |
+ Changes to the raid policy module |
571 |
+ Tab clean up in the razor file context file |
572 |
+ Changes to the razor policy module and relevant dependencies |
573 |
+ Smokeping cgi needs to run ping with a domain transition Remove |
574 |
+ redundant socket create already provided by |
575 |
+ sysnet_dns_name_resolve() |
576 |
+ Changes to the virt policy module |
577 |
+ Changes to the apache policy module |
578 |
+ Changes to the gnome policy module |
579 |
+ Changes to the rdisc policy mpdule |
580 |
+ Changes to the readahead policy module |
581 |
+ Changes to the remotelogin policy module |
582 |
+ Tab clean up in the resmgr file context file |
583 |
+ Changes to the resmgr policy module |
584 |
+ Tab clean up in the rgmanager file context file |
585 |
+ Changes to the rgmanager policy module |
586 |
+ Initial Realmd policy module and relevant dependencies |
587 |
+ Fix resmgrd init script file context specification |
588 |
+ Changes to the cups policy module |
589 |
+ automount reads overcommit_memory |
590 |
+ Changes to the networkmanager policy module |
591 |
+ Freshclam manages amavis spool content |
592 |
+ Changes to the tftp policy module |
593 |
+ Changes to the cobbler policy module |
594 |
+ Tab clean up in the rhcs file context file |
595 |
+ Changes to the rhcs policy module and relevant dependencies |
596 |
+ Tab clean up in the rhgb file context file |
597 |
+ Changes to the rhgb policy module |
598 |
+ Tab clean up in the rhsmcertd file context file |
599 |
+ Changes to the rhsmcertd policy module |
600 |
+ Tab clean up in the ricci file context file |
601 |
+ Changes to the ricci policy module |
602 |
+ Tab clean up in the rlogin file context file |
603 |
+ Changes to the rlogin policy module |
604 |
+ Tab clean up in the roundup file context file |
605 |
+ Changes to the roundup policy module |
606 |
+ Changes to the remotelogin policy module |
607 |
+ Changes to the apache policy module |
608 |
+ Changes to the awstats policy module |
609 |
+ fix puppet_admin() need to require types that it uses |
610 |
+ Replace wrong type in puppet_admin() |
611 |
+ Fix a syntax error in ricci_domtrans() |
612 |
+ Catch all rpcbind content in /var/run |
613 |
+ Changes to the cups policy module |
614 |
+ Tab clean up in the rpc file context file |
615 |
+ Changes to the rpc policy module |
616 |
+ Tab clean up in the rpcbind file context file |
617 |
+ Changes to the rpcbind policy module |
618 |
+ Tab clean up in the rpm file context file |
619 |
+ Changes to the rpm policy module and depedencies |
620 |
+ Changes to the rshd policy module |
621 |
+ Changes to the virt policy module |
622 |
+ Changes to the rssh policy module |
623 |
+ Tab clean up in the rsync file context file |
624 |
+ Fix a typo in apache XML |
625 |
+ Changes to the rsync policy module |
626 |
+ Changes to the rtkit policy module |
627 |
+ Tab clean up in the rwho file context file |
628 |
+ Changes to the rwho policy module |
629 |
+ Reads /proc/sys/kernel/random/poolsize |
630 |
+ Tab clean up in the samba file context file |
631 |
+ Changes to the samba policy module and relevant dependencies |
632 |
+ Tab clean up in the sambagui file context file |
633 |
+ Changes to the sambagui policy module |
634 |
+ Initial firewallgui policy module |
635 |
+ Tab clean up in the samhain file context file |
636 |
+ Changes to the samhain policy module |
637 |
+ Tab clean up in the sanlock file context file |
638 |
+ Changes to the sanlock policy module and relevant dependencies |
639 |
+ Tab clean up in the sasl file context file |
640 |
+ Changes to the sasl policy module |
641 |
+ Chnages to the sblim policy module |
642 |
+ Tab clean up in the screen file context file |
643 |
+ Changes to the screen policy module |
644 |
+ Tab clean up in the sectoolm file context file |
645 |
+ Changes to firewallgui policy module |
646 |
+ Changes to the sectoolm policy module |
647 |
+ Tab clean up in the sendmail file context file |
648 |
+ Changes to the sendmail policy module and relevant dependencies |
649 |
+ Tab clean up in the setroubleshoot file context file |
650 |
+ Changes to the setroubleshoot policy module |
651 |
+ Tab clean up in the shorewall file context file |
652 |
+ Changes to the shorewall policy module |
653 |
+ Tab clean up in the shutdown file context file |
654 |
+ Changes to the shutdown policy module and relevant dependencies |
655 |
+ Tab clean up in the slocate file context file |
656 |
+ Changes to the slocate policy module and relevant dependencies |
657 |
+ These domains transition to shutdown domain now so they no longer need |
658 |
+ direct access |
659 |
+ Re-add missing network rule in screen policy module |
660 |
+ fail2ban server sets scheduler |
661 |
+ shutdown XML clean up |
662 |
+ libvirtd sets kernel scheduler |
663 |
+ mongod reads cpuinfo_max_freq |
664 |
+ Changes to the slrnpull policy module |
665 |
+ Tab clean up in the smartmon file context file |
666 |
+ Changes to the smartmon policy module |
667 |
+ Tab clean up in the smokeping file context file |
668 |
+ Changes to the smokeping policy module |
669 |
+ Tab clean up in the smoltclient file context file |
670 |
+ Changes to the smoltclient policy module |
671 |
+ Tab clean up in the snmp file context file |
672 |
+ Changes to the snmp policy module |
673 |
+ Tab clean up in the snort file context file |
674 |
+ Changes to the snort policy module |
675 |
+ Changes to the sosreport policy module and relevant dependencies |
676 |
+ Tab clean up in the soundserver file context file |
677 |
+ Changes to the soundserver policy module |
678 |
+ Tab clean up in the spamassassin file context file |
679 |
+ Changes to the spamassassin policy module and relevant dependendies |
680 |
+ spamassassin_role callers create ~/.spamd with the spamd_home_t user |
681 |
+ home type instead |
682 |
+ Re-add sys_admin capability that was lost with porting from Fedora |
683 |
+ Move mailscanner content to mailscanner module |
684 |
+ Changes to the speedtouch policy module |
685 |
+ Tab clean up in the squid file context file |
686 |
+ Changes to the squid policy module |
687 |
+ Changes to the sssd policy module |
688 |
+ Tab clean up in the stunnel file context file |
689 |
+ Changes to the stunnel policy module |
690 |
+ Tab clean up in the sxid file context file |
691 |
+ Changes to the sxid policy module |
692 |
+ Tab clean up in the sysstat file context file |
693 |
+ Changes to the sysstat policy module |
694 |
+ Tab clean up in the tcpd file context file |
695 |
+ Changes to the tcpd policy module |
696 |
+ Changes to the tcsd policy module |
697 |
+ Tab clean up in the telepathy file context file |
698 |
+ Changes to the telepathy policy module |
699 |
+ Tab clean up in the telnet file context file |
700 |
+ Changes to the telnet policy module |
701 |
+ Tab clean up in the tftp file context file |
702 |
+ Changes to the tftp policy module |
703 |
+ Tab clean up in the tgtd file context file |
704 |
+ Changes to the tgtd policy module |
705 |
+ Tab clean up in the thunderbird file context file |
706 |
+ Changes to the thunderbird policy module |
707 |
+ Catch /var/log/cron directory as well |
708 |
+ Dovecot module version bump for fixes by Sven Vermeulen |
709 |
+ Portage module version bump for fixes by Sven Vermeulen |
710 |
+ Cron module version bump for fixes by Sven Vermeulen |
711 |
+ Changes to the exim policy module |
712 |
+ Entropyd reads /proc/meminfo |
713 |
+ Blueman reads tmp_t directories |
714 |
+ Do not audit attempts by cups config to read tmp_t directories |
715 |
+ Do not audit attempts by fail2ban to read tmp_t directories |
716 |
+ Do not audit attempts by firewalld to read tmp_t directories |
717 |
+ Gnomeclock reads urandom and realtime clock |
718 |
+ Kdumpctl needs sys_chroot capability |
719 |
+ Various kdumpgui fixes from Fedora |
720 |
+ Do not audit attempts by logwatch to read tmp_t directories |
721 |
+ Catch all alias files |
722 |
+ Refine aliases file transition with names |
723 |
+ Realmd dbus chat policykit and networkmanager from Fedora |
724 |
+ Do not audit attempts by tuned to read tmp_t directories |
725 |
+ Changes to the timidity policy module |
726 |
+ Tab clean up in the tmpreaper file context file |
727 |
+ Changes to the tmpreaper policy module and relevant dependencies |
728 |
+ Tab clean up in the tor file context file |
729 |
+ Changes to the tor policy module |
730 |
+ Changes to the transproxy policy module |
731 |
+ Tab clean up in the tripwire file context file |
732 |
+ Changes to the tripwire policy module |
733 |
+ Tab clean up in the tuned file context file |
734 |
+ Changes to the tuned policy module |
735 |
+ Tab clean up in the tvtime file context file |
736 |
+ Changes to the tvtime policy module |
737 |
+ Changes to the tzdata policy module |
738 |
+ Changes to the ucspitcp policy module |
739 |
+ Tab clean up in the ulogd file context file |
740 |
+ Changes to the ulogd policy module |
741 |
+ Tab clean up in the uml file context file |
742 |
+ Changes to the uml policy module |
743 |
+ Make it so that irc clients can also get attributes of cifs, nfs, fuse |
744 |
+ and other file systems |
745 |
+ Changes to the updfstab policy module |
746 |
+ Changes to the uptime policy module |
747 |
+ Tab clean up in the usbmodules file context file |
748 |
+ Changes to the usbmodule policy module |
749 |
+ Changes to the usbmuxd policy module |
750 |
+ Tab clean up in the userhelper file context file |
751 |
+ Screen sends child terminated signals to all interactive fd domains |
752 |
+ Changes to the userhelper policy module and relevant dependencies |
753 |
+ Changes to the virt policy module |
754 |
+ Module version bump for fail2ban changes by Sven Vermeulen |
755 |
+ Changes to the rpm policy module |
756 |
+ fix smartmon init script file context specification |
757 |
+ Changes to the usernetctl policy module |
758 |
+ Tab clean up in the uucp file context file |
759 |
+ Changes to the uucp policy module |
760 |
+ Changes to the virt policy module |
761 |
+ Tab clean up in the uuid file context file |
762 |
+ Changes to the uuidd policy module |
763 |
+ Tab clean up in the uwimap file context file |
764 |
+ Changes to the uwimap policy module |
765 |
+ Tab clean up in the varnishd file context file |
766 |
+ Changes to the varnishd policy module |
767 |
+ Changes to the vbetool policy module |
768 |
+ Tab clean up in the vdagent file context file |
769 |
+ Changes to the vdagent policy module |
770 |
+ Tab clean up in the vhostmd file context file |
771 |
+ Changes to the vhostmd policy module |
772 |
+ Changes to the vlock policy module |
773 |
+ Tab clean up in the vmware file context file |
774 |
+ Changes to the vmware policy module |
775 |
+ Tab clean up in the vnstatd file context file |
776 |
+ Changes to the vnstatd policy module |
777 |
+ Tab clean up in the vpn file context file |
778 |
+ Changes to the vpnc policy module |
779 |
+ Tab clean up in the w3c file context file |
780 |
+ Changes to the w3c policy module |
781 |
+ Tab clean up in the watchdog file context file |
782 |
+ Changes to the watchdog policy module |
783 |
+ Changes to the wdmd policy module |
784 |
+ Changes to the webadm policy modules |
785 |
+ Changes to the webalizer policy module |
786 |
+ White space fix in apache policy module |
787 |
+ Changes to the wine policy module |
788 |
+ Tab clean up in the wireshark file context file |
789 |
+ Changes to the wireshark policy module |
790 |
+ Tab clean up in the wm file context file |
791 |
+ Changes to the wm policy module |
792 |
+ Changes to the inn policy module |
793 |
+ Move man cache file type to miscfiles |
794 |
+ Changes to the inn policy module |
795 |
+ More accurate dbadm boolean descriptions |
796 |
+ mysql_admin() has access to ~/.my.cnf files |
797 |
+ Tab clean up in the xen file context file |
798 |
+ Changes to the xen policy module and relevant dependencies |
799 |
+ Tab clean up in the xfs file context file |
800 |
+ Changes to the xfs policy module |
801 |
+ Changes to the xguest policy module and relevant dependencies |
802 |
+ Changes to the xprint policy module |
803 |
+ Changes to the xscreensaver policy module |
804 |
+ Tab clean up in the yam file context file |
805 |
+ Changes to the yam policy module |
806 |
+ Tab clean up in the zabbix file context file |
807 |
+ Changes to the zabbix policy module |
808 |
+ Tab clean up in the zarafa file context file |
809 |
+ Changes to the zarafa policy module |
810 |
+ Tab clean up in the zebra file context file |
811 |
+ Changes to the zebra policy module |
812 |
+ Changes to the zosremote policy module |
813 |
+ Changes to the mysql policy module |
814 |
+ Tab clean up in the pulseaudio file context file |
815 |
+ Changes to the pulseaudio policy module and relevant dependencies |
816 |
+ Changes to the pulseaudio policy module |
817 |
+ One chown too many |
818 |
+ Changes to the mplayer policy module |
819 |
+ The prelink cron script now runs in its own domain |
820 |
+ Initial smstools policy module |
821 |
+ Initial openvswitch policy module and relevant dependencies |
822 |
+ Reads pcsd pid files |
823 |
+ Reads random device |
824 |
+ winbind manages smbd pid sock files from Fedora |
825 |
+ Changes to the bind policy module |
826 |
+ CG rules daemon reads all sysctls |
827 |
+ Runs consoletype and searches nfs state data from Fedora |
828 |
+ Support munin unbound plugin from Fedora |
829 |
+ Zabbix sends signals from Fedora |
830 |
+ Blueman sets scheduler and sends signals from Fedora |
831 |
+ pcscd_read_pub_files is deprecated, use pcscd_read_pid_files instead |
832 |
+ Module version bumps for fixes in portage and virt modules by Sven |
833 |
+ Vermeulen |
834 |
+ Policy module version bumps for various changes by Sven Vermeulen |
835 |
+ Changes to the openvpn policy module |
836 |
+ Module version bumps for various fixes by Sven Vermeulen |
837 |
+ Changes to the mandb policy module |
838 |
+ Changes to the tmpreaper policy module |
839 |
+ Changes to the munin policy module |
840 |
+ Changes to the rngd policy module |
841 |
+ Changes to the awstats policy module and relevant dependencies |
842 |
+ Changes to the apache policy module |
843 |
+ Changes to various policy modules |
844 |
+ Changes to the abrt policy module |
845 |
+ Changes to the passenger policy module and relevant depedencies |
846 |
+ Changes to the pegagus policy module |
847 |
+ Changes to the mta policy module |
848 |
+ Changes to the fetchmail policy module |
849 |
+ Changes to the bitlbee policy module |
850 |
+ Changes to the blueman policy module and relevant dependencies |
851 |
+ Changes to the amavis policy module |
852 |
+ Changes to the userhelper policy module |
853 |
+ Changes to the blueman policy module |
854 |
+ Changes to the squid policy module |
855 |
+ Changes to the sblim policy module |
856 |
+ Changes to the kdumpgui policy module |
857 |
+ Changes to the mailman policy module |
858 |
+ Changes to the realmd policy module |
859 |
+ Changes to the raid policy module |
860 |
+ Changes to the samba policy module |
861 |
+ Changes to the various policy modules |
862 |
+ Changes to the snmp policy module |
863 |
+ Changes to the spamassassin policy module |
864 |
+ Changes to the sssd policy module |
865 |
+ Changes to the l2tpd policy module |
866 |
+ Changes to the shorewall policy module |
867 |
+ Changes to the xen policy module |
868 |
+ Changes to the tftp policy modules |
869 |
+ Changes to the accountsd policy module |
870 |
+ Changes to the tgtd policy module |
871 |
+ Changes to the corosync policy module |
872 |
+ Changes to the kdump policy module |
873 |
+ Changes to the openvswitch policy module |
874 |
+ Changes to the mpd policy module |
875 |
+ Changes to the mozilla policy module |
876 |
+ Changes to the zarafa policy module |
877 |
+ Changes to the boinc policy module |
878 |
+ Changes to the setroubleshoot policy module |
879 |
+ Changes to the dspam policy module |
880 |
+ Changes to the rgrmanager policy module and relevant dependencies |
881 |
+ Changes to the svnserve policy module |
882 |
+ Changes to the virt policy module |
883 |
+ Changes to the prelink policy module |
884 |
+ Changes to the apache policy module |
885 |
+ Changes to the gnomeclock policy module |
886 |
+ Changes to various policy modules |
887 |
+ Changes to the pegagus policy module |
888 |
+ Changes to the shorewall policy module |
889 |
+ Changes to the kerberos policy module |
890 |
+ Changes to the rhcs policy module |
891 |
+ Changes to the irc policy module |
892 |
+ Changes to the clamav policy module |
893 |
+ Changes to the mrtg policy module |
894 |
+ Changes to the munin policy module |
895 |
+ Changes to the amavis policy module |
896 |
+ Changes to the ppp policy module |
897 |
+ Initial jockey policy module |
898 |
+ Module version bumps for "several named transition for directories |
899 |
+ created in /var/run by initscripts" in various modules by Laurent |
900 |
+ Bigonville |
901 |
+ Module version bumps for fixes in various modules by Laurent Bigonville |
902 |
+ Module version bump for changes to the consolekit policy module by |
903 |
+ Laurent Bigonville |
904 |
+ Changes to the stunnel policy module |
905 |
+ Module version bumps for fixes in various modules by Sven Vermeulen |
906 |
+ Changes to the virt policy module |
907 |
+ Changes to the apache policy module |
908 |
+ Changes to the wm policy module |
909 |
+ Changes to the samba policy module |
910 |
+ Changes to the certmonger policy module |
911 |
+ Changes to the mozilla policy module |
912 |
+ Changes to the corosync policy module |
913 |
+ Changes to the pacemaker policy module |
914 |
+ Changes to the tuned policy module |
915 |
+ Changes to the cups module and relevant dependencies |
916 |
+ Changes to the rhsmcertd policy module |
917 |
+ Changes to the lpd policy module |
918 |
+ Changes to the munin policy module |
919 |
+ Changes to the ntp policy module |
920 |
+ Changes to the tor policy module |
921 |
+ Changes to the firewalld policy module |
922 |
+ Changes to the dspam policy module |
923 |
+ Changes to the setroubleshoot policy module |
924 |
+ Changes to the condor policy module |
925 |
+ Changes to the kerberos policy module |
926 |
+ Changes to the passenger policy module |
927 |
+ Changes to the ppp policy module |
928 |
+ Changes to the the dkim policy module |
929 |
+ Changes to the abrt policy module |
930 |
+ Changes to the lircd policy module |
931 |
+ Changes to the dkim policy module |
932 |
+ Changes to the virt policy module |
933 |
+ Changes to the munin policy module |
934 |
+ Changes to the dovecot policy module |
935 |
+ Changes to the cobbler policy module |
936 |
+ Changes to the userhelper policy module |
937 |
+ Changes to the logwatch policy module |
938 |
+ Changes to the wdmd policy module and relevant dependencies |
939 |
+ Changes to the nscd policy module and relevant dependencies |
940 |
+ Changes to the dbus policy module |
941 |
+ Module version bumps for fixes in various policy modules by Laurent |
942 |
+ Bigonville |
943 |
+ Changes to the cups policy module |
944 |
+ Changes to the dbus policy module |
945 |
+ Changes to the apcupsd policy module |
946 |
+ Remove redundant net_bind_service capabilities in various modules |
947 |
+ Changes to the virt policy module |
948 |
+ Changes to the puppet policy module |
949 |
+ Module version bumps for fixes in various policy module by Sven |
950 |
+ Vermeulen |
951 |
+ Module version bumps for file context fixes in various policy modules by |
952 |
+ Laurent Bigonville |
953 |
+ Make httpd_manage_all_user_content() do what it advertises |
954 |
+ Add more networking rules to mplayer policy module for compatibility |
955 |
+ Fix fcronsighup file context. Should be crontab_exec_t as per previous |
956 |
+ spec |
957 |
+ Module version bumps for changes in various modules by Sven Vermeulen |
958 |
+ Move asterisk_exec() and modify XML header |
959 |
+ Consolekit creates /var/run/console directories with a type transition |
960 |
+ unconditionally |
961 |
+ Module version bump in consolekit policy module for changes by Sven |
962 |
+ Vermeulen |
963 |
+ The imaplogin executable file should be courier_pop_exec_t according to |
964 |
+ existing file context specification |
965 |
+ Module version bump for changes to the fail2ban policy module by Sven |
966 |
+ Vermeulen |
967 |
+ Modules version bumps for changes in various policy modules by Sven |
968 |
+ Vermeulen |
969 |
+ |
970 |
+Laurent Bigonville (28): |
971 |
+ Add Debian locations for Telepathy connection managers |
972 |
+ Label telepathy-rakia as telepathy-sofiasip |
973 |
+ Allow smartd daemon to write in /var/lib/smartmontools directory |
974 |
+ Add Debian location for smartd daemon initscript |
975 |
+ Add Debian location for accounts-daemon daemon |
976 |
+ Add Debian location for rtkit-daemon daemon |
977 |
+ Add Debian location for tcsd init script |
978 |
+ Add Debian location for libvirtd init script |
979 |
+ Add Debian location for evolution executables |
980 |
+ Add Debian locationis for nut executables and configuration files |
981 |
+ Add several named transition for directories created in /var/run by |
982 |
+ initscripts |
983 |
+ Run packagekit under apt_t context on Debian distribution |
984 |
+ Add proper label for colord daemon in debian |
985 |
+ Allow the system dbus to search cgroup directories |
986 |
+ Allow virtd_t context to read sysctl_crypto_t |
987 |
+ Allow colord_t context to read sysctl_crypto_t |
988 |
+ Add proper label for gconfd-2 daemon in Debian |
989 |
+ Ensure that consolekit can create /var/run/console directory on Debian |
990 |
+ Properly label nm-dispatcher.action on Debian |
991 |
+ policykit.fc: Properly label polkit-agent-helper-1 on Debian |
992 |
+ cups.fc: Properly label cups-pk-helper-mechanism on Debian |
993 |
+ Allow pcscd the fsetid capability |
994 |
+ Allow networkmanager_t to read crypto_sysctl_t |
995 |
+ Allow virsh_t context to read sysctl_crypto_t |
996 |
+ Allow cupsd_t to read cupsd_log_t |
997 |
+ gnomeclock.fc: Properly label gsd-datetime-mechanism in Debian |
998 |
+ ptchown.fc: Properly label pt_chown executable in Debian |
999 |
+ Label /usr/bin/kvm as qemu_exec_t |
1000 |
+ |
1001 |
+Matthew Thode (2): |
1002 |
+ added autofs support and nsswitch support |
1003 |
+ removing refrences to named_var_lib_t as it doesn't exist anymore for |
1004 |
+ bind.if |
1005 |
+ |
1006 |
+Mika Pflüger (3): |
1007 |
+ Allow saslauthd_t to talk to mysqld via TCP |
1008 |
+ Quota policy adjustments: * Allow quota_t to load kernel modules |
1009 |
+ Debian locations for dovecot deliver and dovecot auth. |
1010 |
+ |
1011 |
+Russell Coker (1): |
1012 |
+ Fix djbdns ports |
1013 |
+ |
1014 |
+Sven Vermeulen (75): |
1015 |
+ Update with new substitutions |
1016 |
+ Mark the pid directory as a pid directory |
1017 |
+ Add in transitions for queue types when the queues are created |
1018 |
+ Fix typo in interface postfix_exec_postqueue |
1019 |
+ Allow maildelivery to use dotlock files in the mail spool |
1020 |
+ Allow postfix local to change ownership of mailfiles |
1021 |
+ Use libexec location for postfix binaries |
1022 |
+ Allow initrc_t to create run dirs for contrib modules |
1023 |
+ Update logwatch location in file context |
1024 |
+ Sandbox is an inherent part of the portage inner workings |
1025 |
+ Fix startup issue with fail2ban-client |
1026 |
+ Be able to get output from fail2ban-client |
1027 |
+ Ignore searches when ran from the user home directory |
1028 |
+ Shorewall admins execute shorewall too |
1029 |
+ Shorewall needs sys_admin capability for manipulating network stack |
1030 |
+ Be able to display dovecot errors |
1031 |
+ Remove transition to ldconfig |
1032 |
+ Adding interfaces for handling cron log files |
1033 |
+ Fail2ban client checks state of log files before telling the server |
1034 |
+ Support mysql init script |
1035 |
+ Support initial creation of mysql database files |
1036 |
+ Portage fetch domain needs to access certificates |
1037 |
+ Make samba domtrans optional in virt |
1038 |
+ Fix typo in tunable declaration for fcron_crond |
1039 |
+ Introducing cron_manage_log_files interface |
1040 |
+ Introduce dontaudit interfaces for leaked fd and unix stream sockets |
1041 |
+ Dontaudit attempts by system_mail_t to use leaked fd or stream sockets |
1042 |
+ Support at service |
1043 |
+ Additional postfix admin requirements |
1044 |
+ Reintroduce postfix_var_run_t for pid directory and fowner capability |
1045 |
+ Postfix deferred queue should not mark mails as postfix_spool_maildrop_t |
1046 |
+ Running qemu with SDL support requires more xserver-related privileges |
1047 |
+ Fix typo in clockspeed comment |
1048 |
+ Support openvpn status file |
1049 |
+ Asterisk voicemail messages are generated from tmp |
1050 |
+ Make rtkit calls optional |
1051 |
+ Gentoo installs dovecot certs in /etc/ssl/dovecot |
1052 |
+ Moving sandbox code to sandbox section (v2) |
1053 |
+ Allow sandbox to log violations |
1054 |
+ Use rw_fifo_file_perms |
1055 |
+ Apache should not depend on gpg |
1056 |
+ Named init script creates rundir |
1057 |
+ Add ~/.maildir as a valid maildir destination |
1058 |
+ Support stunnel_read_config for startup |
1059 |
+ Updates on stunnel policy |
1060 |
+ More .maildir fixes |
1061 |
+ Mark make.profile entry as portage_conf_t (v2) |
1062 |
+ Move mta call (coding style) |
1063 |
+ Changes to puppet domain |
1064 |
+ Allow rpc admin to run exportfs |
1065 |
+ Grant sys_admin capability to puppet |
1066 |
+ Puppet module helper scripts are puppet_var_lib_t |
1067 |
+ Support netlink_route_socket creation for puppet |
1068 |
+ Puppet initscript creates /run/puppet |
1069 |
+ Puppet runs statfs against selinuxfs |
1070 |
+ mplayer streams HTTP resources |
1071 |
+ fcron and fcronsighup binaries are moved |
1072 |
+ Asterisk needs to search through logs |
1073 |
+ Denial in mail log on node bind |
1074 |
+ Fix typo in mcelog_admin (missing bracket) |
1075 |
+ Add in contexts for fcron rm.systab and systab.tmp |
1076 |
+ Remove pulseaudio filename_trans conflict |
1077 |
+ Allow asterisk admins to execute asterisk binary directly |
1078 |
+ Support tagfiles for consolekit |
1079 |
+ ConsoleKit needs to read the dbus machine-id |
1080 |
+ File context updates for courier-imap |
1081 |
+ Update on file contexts for OpenLDAP |
1082 |
+ Update on file contexts for wpa_supplicant |
1083 |
+ Allow IRC clients to read certificates |
1084 |
+ Allow reading /proc/self for fail2ban due to FAM support |
1085 |
+ Update file contexts for puppet |
1086 |
+ Support ~/.tmux.conf as tmux configuration file |
1087 |
+ Add setuid/setgid capability to ulogd_t |
1088 |
+ Support tmux control socket |
1089 |
+ Postfix creates defer(red) queue locations |
1090 |
+ |