| 1 |
commit: de0e1dda1d087b718bbd250ab46c24f0a04a713a |
| 2 |
Author: Chris PeBenito <cpebenito <AT> tresys <DOT> com> |
| 3 |
AuthorDate: Wed Apr 24 20:14:52 2013 +0000 |
| 4 |
Commit: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be> |
| 5 |
CommitDate: Wed May 1 18:21:50 2013 +0000 |
| 6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=de0e1dda |
| 7 |
|
| 8 |
Update Changelog for release. |
| 9 |
|
| 10 |
--- |
| 11 |
policy/modules/contrib/Changelog | 1071 ++++++++++++++++++++++++++++++++++++++ |
| 12 |
1 files changed, 1071 insertions(+), 0 deletions(-) |
| 13 |
|
| 14 |
diff --git a/policy/modules/contrib/Changelog b/policy/modules/contrib/Changelog |
| 15 |
new file mode 100644 |
| 16 |
index 0000000..8b9356a |
| 17 |
--- /dev/null |
| 18 |
+++ b/policy/modules/contrib/Changelog |
| 19 |
@@ -0,0 +1,1071 @@ |
| 20 |
+* Wed Apr 24 2013 Chris PeBenito <selinux@××××××.com> - 2.20130424 |
| 21 |
+Chris PeBenito (18): |
| 22 |
+ Rewrite of mcelog module from Guido Trentalancia |
| 23 |
+ Remove unnecessary lines in mcelog.te. |
| 24 |
+ Slight rearrangement in mcelog.te. |
| 25 |
+ Module version bump for mcelog update from Guido Trentalancia. |
| 26 |
+ Module version bump for ntp module fixes from Dominick Grift. |
| 27 |
+ Module version bump for fc substitutions optimizations from Sven |
| 28 |
+ Vermeulen. |
| 29 |
+ Module version bump for postfix/mta misc fixes from Sven Vermeulen. |
| 30 |
+ Module version bump for init_daemon_run_dirs usage from Sven Vermeulen. |
| 31 |
+ Turn off all tunables by default, from Guido Trentalancia. |
| 32 |
+ Module version bump for tunable default change. |
| 33 |
+ Module version bump for saslauthd tcp mysql connections from Mika Flueger. |
| 34 |
+ Move kernel request line in quota. |
| 35 |
+ Module version bump for quota kernel module request from Mika Pflueger. |
| 36 |
+ Module version bump for djbdns ports fixes from Russell Coker. |
| 37 |
+ Remove stray + in keystone.te. |
| 38 |
+ Whitespace fixes in cron.fc. |
| 39 |
+ Module version bump for pulseaudio type_transition conflict fix from Sven |
| 40 |
+ Vermeulen. |
| 41 |
+ Bump module versions for release. |
| 42 |
+ |
| 43 |
+Dominick Grift (889): |
| 44 |
+ Initial BIRD Internet Routing Daemon policy |
| 45 |
+ oident daemon fixes |
| 46 |
+ Introduce ntp_conf_t |
| 47 |
+ Allow ntp_admin() to manage ntp_drift_t content. |
| 48 |
+ List etc_t directories |
| 49 |
+ Use "Role allowed access." for consistency |
| 50 |
+ Use permissions sets for compatibility. |
| 51 |
+ Remove getattr permision from ntp_admin() |
| 52 |
+ Initial Sensord policy module |
| 53 |
+ Various block_suspend capability2 support from Fedora |
| 54 |
+ Gitolite3 support from Fedora |
| 55 |
+ /var/lib/sqlgrey is greylist milter data from Fedora |
| 56 |
+ Terminal related fixes for plymouthd from Fedora Support block_suspend |
| 57 |
+ capability2 for plymouth |
| 58 |
+ Support minimal polkit in new location |
| 59 |
+ Support ldap for user authentication from Fedora |
| 60 |
+ Sanlock sends kill signals to non-root processes from Fedora Various |
| 61 |
+ other capabilities for sanlock from Fedora |
| 62 |
+ Initial support for sqlgrey from Fedora |
| 63 |
+ Tor reads network sysctls from Fedora |
| 64 |
+ GPG agent reads /dev/random from Fedora |
| 65 |
+ Freshclam reads system and network state from Fedora |
| 66 |
+ Execute wpa_cli in the NetworkManager_t domain for wicd from Fedora |
| 67 |
+ lpstat.cups reads fips_enabled from Fedora |
| 68 |
+ Initial system tap compile server policy module |
| 69 |
+ Systemtap server admin manages stapserver_var_lib_t content |
| 70 |
+ Telepathy Idle reads gschemas.compiled from Fedora |
| 71 |
+ Initial slpd policy module |
| 72 |
+ Initial lightsquid policy module |
| 73 |
+ Initial wdmd policy module |
| 74 |
+ Initial mailscanner policy module and some depencies. |
| 75 |
+ Support slpd log rotation |
| 76 |
+ Initial numad policy module |
| 77 |
+ Open log files for append only |
| 78 |
+ CGClear reads CGConfig files from Fedora Cosmetic changes to cgroup |
| 79 |
+ policy module File contexts of cgroup app executables files in |
| 80 |
+ /sbin also apply to /usr/sbin Make cgroup_admin() a bit more |
| 81 |
+ compact |
| 82 |
+ Initial svnserve policy module |
| 83 |
+ Various small changes to ucspitcp |
| 84 |
+ Initial fcoe policy module |
| 85 |
+ Initial lldpad policy module |
| 86 |
+ fcoemon sends to lldpad with a dgram socket |
| 87 |
+ Initial quantum policy module |
| 88 |
+ Initial dspam policy module |
| 89 |
+ Module version bump for Telepathy file context spec fixes from Laurent |
| 90 |
+ Bigonville. |
| 91 |
+ Initial isns policy module |
| 92 |
+ Various changes to tcs policy module |
| 93 |
+ Initial ctdb policy module |
| 94 |
+ Various changes to the sblim policy module and its dependencies |
| 95 |
+ Initial polipo policy module |
| 96 |
+ Module version bump for networkmanager fixes |
| 97 |
+ Fixes to the polipo policy module |
| 98 |
+ Module version bump for smartmon fixes from Laurent Bigonville. |
| 99 |
+ Module version bump for accountsd file context spec fix from Laurent |
| 100 |
+ Bigonville. |
| 101 |
+ Various changes to the raid module |
| 102 |
+ Module version bump for rtkit file context spec fix from Laurent |
| 103 |
+ Bigonville |
| 104 |
+ Initial couchdb policy module |
| 105 |
+ Changes to the bind policy module |
| 106 |
+ Initial dnssectrigger policy module |
| 107 |
+ Initial man2html policy module |
| 108 |
+ Initial openhpi policy module |
| 109 |
+ Bind sends/receives http server instead of client packets conditionally |
| 110 |
+ Two file context regular expression fixes by Eric Paris |
| 111 |
+ Type mdadm_t is no longer a unconfined type |
| 112 |
+ Initial pkcs policy module |
| 113 |
+ Initial cfengine policy module |
| 114 |
+ Initial keystone policy module |
| 115 |
+ Initial l2tp policy module |
| 116 |
+ Initial mongodb policy module |
| 117 |
+ cfengine whitespace cleanup |
| 118 |
+ Changes to the accountsservice policy module |
| 119 |
+ Changes to the acct policy module |
| 120 |
+ Changes to the ada policy module |
| 121 |
+ changes to the afs policy module |
| 122 |
+ Changes to the accountsservice policy module |
| 123 |
+ Changes to the aiccu policy module |
| 124 |
+ Changes to the aide policy module |
| 125 |
+ Syntax error in afs_admin() |
| 126 |
+ Changes to the aisexec policy module |
| 127 |
+ Changes to the alsa policy module |
| 128 |
+ Changes to the amanda policy module |
| 129 |
+ Changes to the amavisd policy module and relevant dependencies |
| 130 |
+ Changes to the amtu policy module |
| 131 |
+ Changes to the anaconda policy module |
| 132 |
+ Changes to the abrt policy module and relevant dependencies |
| 133 |
+ numad sends/receives msgs from Fedora |
| 134 |
+ Amtu executable file in installed in /usr/sbin in Fedora |
| 135 |
+ The (usr/)? expression does not work consistently so better not use it |
| 136 |
+ at all |
| 137 |
+ Changes to the httpd policy module |
| 138 |
+ Merge branch 'master' of |
| 139 |
+ ssh://dgrift@××××××××××.com/home/git/refpolicy-contrib |
| 140 |
+ Fixes to the apache policy module and dependencies |
| 141 |
+ Changes to the apcupsd policy module |
| 142 |
+ Role attributes for lightsquid application domain |
| 143 |
+ Changes to the mailscanner module |
| 144 |
+ Changes to the svnserve policy module |
| 145 |
+ Changes to the quantum policy module |
| 146 |
+ Changes to the dspam module |
| 147 |
+ Changes to the ctdb policy module |
| 148 |
+ Changes to the couchdb policy module |
| 149 |
+ Changes to the openhpid policy module |
| 150 |
+ Changes to the keystone policy module |
| 151 |
+ Changes to the l2tp policy module |
| 152 |
+ Changes to the apm module and relevant dependencies |
| 153 |
+ Changes to the arpwatch policy module |
| 154 |
+ Changes to the apcupsd policy module |
| 155 |
+ Changes to the abrt policy module |
| 156 |
+ Changes to the apache policy module |
| 157 |
+ Changes to the asterisk policy module and dependencies |
| 158 |
+ Changes to the authbind policy module |
| 159 |
+ Changes to the automount policy module |
| 160 |
+ Change acpid lock file context spec |
| 161 |
+ Changes to the avahi policy module and dependencies |
| 162 |
+ Changes to the awstats policy module |
| 163 |
+ Changes to the bacula policy module |
| 164 |
+ Changes to the bcfg2 policy module |
| 165 |
+ Changes to the apt policy module |
| 166 |
+ Changes to the apache policy module |
| 167 |
+ Changes to the backup module |
| 168 |
+ Changes to the bind policy module |
| 169 |
+ Bird module clean up |
| 170 |
+ Fix arpwatch connected_stream_socket_perms |
| 171 |
+ Changes to the bitlbee policy module |
| 172 |
+ Changes to the blueman policy module |
| 173 |
+ Changes to the bluetooth policy module |
| 174 |
+ Changes to the brctl policy module |
| 175 |
+ Changes to the apache policy module |
| 176 |
+ Changes to the bugzilla policy module |
| 177 |
+ Changes to the calamaris policy module |
| 178 |
+ Implement lightsquid_admin() |
| 179 |
+ Changes to the apache policy module and dependencies |
| 180 |
+ Initial boinc policy module |
| 181 |
+ Initial callweaver policy module |
| 182 |
+ Changes to the canna policy module |
| 183 |
+ Changes to the ccs policy module |
| 184 |
+ Changes to the cdrecord policy module |
| 185 |
+ Changes to the certmaster policy module and various role attribute fixes |
| 186 |
+ cdrecord needs to read and write callers unix domain stream socket not |
| 187 |
+ create it |
| 188 |
+ Changes to the certmonger policy module and its dependencies |
| 189 |
+ Initial cachefilesd policy module |
| 190 |
+ Changes to the certwatch policy module |
| 191 |
+ Changes to the chronyd policy module |
| 192 |
+ Changes to the cipe policy module |
| 193 |
+ Changes to the clamav policy module |
| 194 |
+ Various network clean up |
| 195 |
+ Add dev_rw_cachefiles() to cachefilesd policy module |
| 196 |
+ Changes to the clockspeed policy module |
| 197 |
+ Changes to the clogd policy module |
| 198 |
+ Changes to the cmirrord policy module |
| 199 |
+ Changes to the cobbler policy module |
| 200 |
+ Changes to the colord policy module |
| 201 |
+ Changes to the comsat policy module |
| 202 |
+ Initial collectd policy module |
| 203 |
+ Initial condor policy module and relevant dependencies |
| 204 |
+ Changes to the consolekit policy module and relevant dependencies |
| 205 |
+ Changes to the corosync policy module and relevant dependencies |
| 206 |
+ Clean up couchdb network rules |
| 207 |
+ Changes to the courier policy module |
| 208 |
+ Changes to the cpucontrol policy module |
| 209 |
+ Changes to the cpufreqselector policy module |
| 210 |
+ Changes to the cron policy module and relevant dependencies |
| 211 |
+ Changes to the cups policy module and relevant dependencies |
| 212 |
+ Changes to the cvs policy module |
| 213 |
+ Remove redundant connect avperms |
| 214 |
+ Changes to the cyphesis policy module |
| 215 |
+ Remove redundant rules from apache_admin() |
| 216 |
+ Changes to the cyrus policy module |
| 217 |
+ Changes to the daemontools policy module |
| 218 |
+ Changes to the dante policy module |
| 219 |
+ Modify dbadm boolean descriptions |
| 220 |
+ Changes to the dbus policy module and its dependencies |
| 221 |
+ Changes to the dcc policy module |
| 222 |
+ Changes to the ddclient policy module |
| 223 |
+ Changes to the ddcprobe policy module |
| 224 |
+ Changes to the denyhosts policy module |
| 225 |
+ Changes to the devicekit policy module and relevant dependencies |
| 226 |
+ Changes to the dhcpd policy module |
| 227 |
+ Changes tothe dictd policy module |
| 228 |
+ Changes to the discc policy module |
| 229 |
+ Changes to the djbdns policy module |
| 230 |
+ Changes to the dkim policy module |
| 231 |
+ Changes to the dmidecode policy module |
| 232 |
+ Module bump for Laurent Bigonville trousers init script file context |
| 233 |
+ specification fix |
| 234 |
+ Module bump for Laurent Bigonville libvirt init script file context |
| 235 |
+ specification fix |
| 236 |
+ Changes to the dnsmasq policy module and relevant dependencies |
| 237 |
+ Changes to the dovecot policy module |
| 238 |
+ Changes to the dpkg policy module |
| 239 |
+ Changes to the entropyd policy module |
| 240 |
+ Changes to the evolution policy module |
| 241 |
+ Changes to the exim policy module and relevant dependencies |
| 242 |
+ Changes to the cron policy module |
| 243 |
+ Changes to the fail2ban policy module |
| 244 |
+ fcoemon XML clean up |
| 245 |
+ Changes to the fetchmail policy module |
| 246 |
+ Changes to the fingerd policy module |
| 247 |
+ Initial firewalld policy module |
| 248 |
+ Changes to the firstboot policy module |
| 249 |
+ Changes to the fprint policy module and relevant dependencies |
| 250 |
+ Changes to the ftp module |
| 251 |
+ Changes to the games policy module |
| 252 |
+ Clean up evolution and cdrecord XML |
| 253 |
+ Changes to the gatekeeper policy module |
| 254 |
+ Changes to the gift policy module |
| 255 |
+ Changes to the git policy module |
| 256 |
+ Changes to the gitosis policy module |
| 257 |
+ Changes to the glance policy module |
| 258 |
+ Initial glusterfs policy module |
| 259 |
+ Add gatekeeper newline |
| 260 |
+ Deprecate glusterd_admin() use glusterfs_admin() instead |
| 261 |
+ Portage module version bump for autofs support by Matthew Thode and |
| 262 |
+ clean up |
| 263 |
+ cfengine: This location is now labeled with a cfengine private type |
| 264 |
+ Changes to the slpd policy module |
| 265 |
+ Changes to the gnomeclock policy module and relevant dependencies |
| 266 |
+ Changes to the gpg policy module |
| 267 |
+ Changes to the gpm policy module |
| 268 |
+ Changes to the gpsd policy module and relevant dependencies |
| 269 |
+ changes to the guest policy module |
| 270 |
+ Changes to the gnomeclock policy module |
| 271 |
+ Deprecate various DBUS interfaces and relevant dependencies |
| 272 |
+ Changes to the cachefilesd policy module |
| 273 |
+ Remove file context specification for kgpg which is a GUI frontend to |
| 274 |
+ GPG. Domain transition to gpg_t will happen when kgpg runs gpg. |
| 275 |
+ (rhbz#862229) |
| 276 |
+ Initial mandb policy module |
| 277 |
+ Changes to the hadoop policy module |
| 278 |
+ Changes to the hald policy module |
| 279 |
+ Changes to the hddtemp policy module |
| 280 |
+ Changes to the howl policy module |
| 281 |
+ changes to the mandb policy module |
| 282 |
+ Changes to the dbus policy module |
| 283 |
+ Changes to the rpm policy module |
| 284 |
+ Changes to the i18n_input policy module |
| 285 |
+ Changes to the icecast policy module |
| 286 |
+ Changes to the ifplugd policy module |
| 287 |
+ Changes to the imaze policy module |
| 288 |
+ Changes to the inetd policy module and relevant dependencies |
| 289 |
+ Changes to the innd policy module |
| 290 |
+ Changes to the irc policy module |
| 291 |
+ Changes to the ircd policy module |
| 292 |
+ Changes to the irc policy module |
| 293 |
+ Changes to the dbus policy module |
| 294 |
+ Changes to the avahi policy module |
| 295 |
+ Changes to the bluetooth policy module |
| 296 |
+ Changes to the aiccu policy module |
| 297 |
+ Changes to the bacula policy module |
| 298 |
+ Changes to the boinc policy module |
| 299 |
+ Changes to the bugzilla policy module |
| 300 |
+ Changes to the ccs policy module |
| 301 |
+ Changes to the clamav policy module |
| 302 |
+ Changes to the cobbler policy module |
| 303 |
+ Changes to the cyphesis policy module |
| 304 |
+ Changes to the dante policy module |
| 305 |
+ Changes to the dbskk policy module |
| 306 |
+ Changes to the ddclient policy module |
| 307 |
+ Changes to the denyhosts policy module |
| 308 |
+ Changes to the dnssectrigger policy module |
| 309 |
+ Changes to the dovecot policy module |
| 310 |
+ Changes to the drbd policy module |
| 311 |
+ Changes to the evolution policy module |
| 312 |
+ Changes to the fail2ban policy module |
| 313 |
+ Changes to the firewalld policy module |
| 314 |
+ Changes to the firstboot policy module |
| 315 |
+ Changes to the games policy module |
| 316 |
+ Changes to the gift policy module |
| 317 |
+ Changes to the glance policy module |
| 318 |
+ Changes to the hald policy module |
| 319 |
+ Changes to the dbus policy module |
| 320 |
+ Changes to the git policy module |
| 321 |
+ Changes to the polipo policy module |
| 322 |
+ Changes to the firewalld policy module |
| 323 |
+ Changes to the gpg policy module |
| 324 |
+ Tab clean up in ircbalance file context file |
| 325 |
+ Changes to the irqbalance policy module |
| 326 |
+ Tab clean up in iscsi file context file |
| 327 |
+ Changes to the iscsi policy module |
| 328 |
+ Tab clean up in jabber file context file |
| 329 |
+ Changes to the jabberd policy module |
| 330 |
+ Changes to the pyicqt policy module |
| 331 |
+ Tab clean up in java file context file |
| 332 |
+ Changes to the java policy module |
| 333 |
+ Changes to the dbus policy module |
| 334 |
+ Changes to the gnome policy module |
| 335 |
+ Changes to the apache policy module |
| 336 |
+ Changes to the accountsd policy module |
| 337 |
+ Changes to the alsa policy module |
| 338 |
+ Changes to the evolution policy module |
| 339 |
+ Changes to the bluetooth policy module |
| 340 |
+ Changes to the games policy module |
| 341 |
+ Changes to the gift policy module |
| 342 |
+ Changes to the gpg policy module |
| 343 |
+ Changes to the hadoop policy module |
| 344 |
+ Tab clean up in kdump file context file |
| 345 |
+ Changes to the kdump policy module |
| 346 |
+ Changes to the gpg policy module |
| 347 |
+ Changes to the dbus policy module |
| 348 |
+ Changes to the evolution policy module |
| 349 |
+ Changes to the gpm policy module |
| 350 |
+ Version bump for evolution file context fixes by Laurent Bigonville |
| 351 |
+ Version bump for nut file context fixes by Laurent Bigonville |
| 352 |
+ Changes to the kdumpgui policy module |
| 353 |
+ Tab clean up in kerberos file context file |
| 354 |
+ Changes to the kerberos policy module and relevant dependencies |
| 355 |
+ Changes to the kerneloops policy module |
| 356 |
+ Tab clean up in kerberos file context file |
| 357 |
+ Changes to the kismet policy module |
| 358 |
+ Clean up amavis XML header |
| 359 |
+ Initial keyboardd policy module |
| 360 |
+ Tab clean up in ksmtuned file context file |
| 361 |
+ Changes to the ksmtuned policy module |
| 362 |
+ Tab clean up in ktalk file context file |
| 363 |
+ Changes to the ktalk policy module |
| 364 |
+ Changes to the kudzu policy module |
| 365 |
+ Initial iodine policy module |
| 366 |
+ Initial dirmngr policy module |
| 367 |
+ Changes to the iodine policy module |
| 368 |
+ Changes to the kerberos policy module |
| 369 |
+ Changes to the kdumpgui policy module |
| 370 |
+ Update deprecated interface calls ( gnome_read_config -> |
| 371 |
+ gnome_read_generic_home_content ) |
| 372 |
+ Changes to the mozilla policy module |
| 373 |
+ Changes to the thunderbird policy module |
| 374 |
+ Changes to the l2tp policy module |
| 375 |
+ Tab clean up in ldap file context file |
| 376 |
+ Changes to the ldap policy module |
| 377 |
+ Tab clean up in likewise file context file |
| 378 |
+ Changes to the likewise policy module |
| 379 |
+ Tab clean up in lircd file context file |
| 380 |
+ Changes to the lircd policy module |
| 381 |
+ Changes to the livecd policy module |
| 382 |
+ Tab clean up in loadkeys file context file |
| 383 |
+ Changes to the loadkeys policy module and relevant dependencies |
| 384 |
+ Tab clean up in lockdev file context file |
| 385 |
+ Changes to the lockdev policy module |
| 386 |
+ Tab clean up in logrotate file context file |
| 387 |
+ Changes to the logrotate policy module and relevant dependencies |
| 388 |
+ Tab clean up in logwatch file context file |
| 389 |
+ Changes to the logrotate policy module |
| 390 |
+ Changes to the logwatch policy module |
| 391 |
+ Tab clean up in lpd file context file |
| 392 |
+ Changes to the lpd policy module |
| 393 |
+ Tab clean up in cron policy module |
| 394 |
+ Changes to the lpd policy module |
| 395 |
+ Changes to the consolekit policy module |
| 396 |
+ Tab fix in cron policy module |
| 397 |
+ Tab clean up in mailman file context file |
| 398 |
+ Changes to the mailman policy module and relevant dependencies |
| 399 |
+ Tab clean up in mcelog file context file |
| 400 |
+ Changes to the mcelog policy module |
| 401 |
+ Tab clean up in mediawiki file context file |
| 402 |
+ Mediawiki XML clean up |
| 403 |
+ Tab clean up in memcached file context file |
| 404 |
+ Changes to the memcached policy module |
| 405 |
+ Changes to the apache policy module |
| 406 |
+ Tab clean up in milter file context file |
| 407 |
+ Changes to the milter policy module and relevant dependencies |
| 408 |
+ Changes to the modemmanager policy module |
| 409 |
+ Tab clean up in mojomojo file context file |
| 410 |
+ Changes to the mojomojo policy module and relevant dependencies |
| 411 |
+ Changes to the gpg policy module |
| 412 |
+ Changes to the mongodb policy module |
| 413 |
+ Changes to the mono policy module |
| 414 |
+ Changes to the monop policy module |
| 415 |
+ Tab clean up in mozilla file context file |
| 416 |
+ Changes to the mozilla policy module and relevant dependencies |
| 417 |
+ Changes to the mozilla policy module |
| 418 |
+ Changes to the apache policy module |
| 419 |
+ Tab clean up in mpd file context file |
| 420 |
+ Changes to the mpd policy module |
| 421 |
+ Tab clean up in mplayer file context file |
| 422 |
+ Changes to the evolution policy module |
| 423 |
+ Changes to the mplayer policy module |
| 424 |
+ Changes to the irc policy module |
| 425 |
+ Tab clean up in mrtg file context file |
| 426 |
+ Changes to the mrtg policy module |
| 427 |
+ Tab clean up in mta file context file |
| 428 |
+ Changes to the mta policy module and relevant dependencies |
| 429 |
+ Changes to the mta policy module and relevant dependencies |
| 430 |
+ Get rid of mozilla_conf_t as it is unused |
| 431 |
+ Changes to the logrotate policy module |
| 432 |
+ Changes to the logwatch policy module |
| 433 |
+ Changes to the java policy module |
| 434 |
+ Changes to the apache module and relevant dependencies |
| 435 |
+ Tab clean up in munin file context file |
| 436 |
+ Changes to the munin policy module and relevant dependencies |
| 437 |
+ Tab clean up in mysql file context file |
| 438 |
+ Changes to mysqld policy module |
| 439 |
+ Changes to various policy modules |
| 440 |
+ Changes to the munin policy module |
| 441 |
+ Changes to the dovecot policy module |
| 442 |
+ Changes to various policy modules |
| 443 |
+ Changes to the mta policy module |
| 444 |
+ Changes to the certmonger policy module and relavant dependencies |
| 445 |
+ Tab clean up in nagios file context file |
| 446 |
+ Changes to the nagios policy module and relevant dependencies |
| 447 |
+ Changes to the modutils policy module |
| 448 |
+ Tab cleanup in the nessus file context file |
| 449 |
+ Changes to the nessus policy module |
| 450 |
+ Tab clean up in the network manager file context file |
| 451 |
+ Changes to the networkmanager policy module and relevant dependencies |
| 452 |
+ Changes to the mozilla policy module |
| 453 |
+ Changes to the cobbler policy module |
| 454 |
+ Initial rngd policy module |
| 455 |
+ Tab clean up in the nis file context file |
| 456 |
+ Changes to the nis policy module |
| 457 |
+ Tab clean up in the nscd file context file |
| 458 |
+ Changes to the nscd policy module |
| 459 |
+ Tab clean up in the nsd file context file |
| 460 |
+ Changes to the nsd policy module |
| 461 |
+ Tab clean up in the nslcd file context file |
| 462 |
+ Changes to the nslcd policy module |
| 463 |
+ Tab clean up in the ntop file context file |
| 464 |
+ Changes to the ntop policy module |
| 465 |
+ Tab clean up in the ntp file context file |
| 466 |
+ Changes to the ntp policy module |
| 467 |
+ Changes to the numad policy module |
| 468 |
+ Tab clean up in the nut file context file |
| 469 |
+ Changes to the nut policy module |
| 470 |
+ Tab clean up in the nx file context file |
| 471 |
+ Changes to the nx policy module |
| 472 |
+ Changes to the oav policy module |
| 473 |
+ Initial obex policy module |
| 474 |
+ Tab clean up in the oddjob file context file |
| 475 |
+ Tab clean up in gpg policy module |
| 476 |
+ Changes to the oddjob policy module |
| 477 |
+ Changes to the mozilla policy module |
| 478 |
+ Initial pacemaker policy module |
| 479 |
+ Tab clean up in the oidentd file context file |
| 480 |
+ Changes to the oident policy module |
| 481 |
+ Tab clean up in the openca file context file |
| 482 |
+ Changes to the openca policy module |
| 483 |
+ Tab clean up in the openct file context file |
| 484 |
+ Changes to the openct policy module |
| 485 |
+ Tab clean up in the openvpn file context file |
| 486 |
+ Changes to the openvpn policy module |
| 487 |
+ Tab clean up in the pads file context file |
| 488 |
+ Changes to the pads policy module |
| 489 |
+ Tab clean up in the passenger file context file |
| 490 |
+ Changes to the passenger policy module and relevant dependencies |
| 491 |
+ Tab clean up in the pcmcia file context file |
| 492 |
+ Changes to the pcmcia policy module |
| 493 |
+ Tab clean up in the pcscd file context file |
| 494 |
+ Changes to the pcscd policy module and relevant dependencies |
| 495 |
+ Tab clean up in the pegasus file context file |
| 496 |
+ Changes to the pegasus policy module |
| 497 |
+ Tab clean up in the perdition file context file |
| 498 |
+ Changes to the perdition policy module |
| 499 |
+ Tab clean up in the pingd file context file |
| 500 |
+ Changes to the pingd policy module |
| 501 |
+ Changes to the plymouthd policy module |
| 502 |
+ Changes to the mozilla policy module |
| 503 |
+ Changes to the plymouth policy module |
| 504 |
+ Tab clean up in the podsleuth file context file |
| 505 |
+ Changes to the podsleuth policy module |
| 506 |
+ Tab clean up in the policykit file context file |
| 507 |
+ Changes to the policykit policy module and relevant dependencies |
| 508 |
+ Tab clean up in the portage file context file |
| 509 |
+ Changes to the portage policy module |
| 510 |
+ Tab clean up in the portmap file context file |
| 511 |
+ Changes to the portmap policy module |
| 512 |
+ Tab clean up in the portreserve file context file |
| 513 |
+ Changes to the portreserve policy module |
| 514 |
+ Tab clean up in the portslave file context file |
| 515 |
+ Changes to the portslave policy module and relevant dependencies |
| 516 |
+ Tab clean up in the postfix file context file |
| 517 |
+ Changes to the postfix policy module and relevant dependencies |
| 518 |
+ Fixes to various policy modules |
| 519 |
+ Tab clean up in the postfixpolicyd file context file |
| 520 |
+ Changes to the postfixpolicyd policy module |
| 521 |
+ Tab clean up in the postgrey file context file |
| 522 |
+ Changes to the postgrey policy module |
| 523 |
+ Tab clean up in the ppp file context file |
| 524 |
+ Changes to the ppp policy module and relevant dependencies |
| 525 |
+ Tab clean up in the prelink file context file |
| 526 |
+ Changes to the prelink policy module and relevant dependencies |
| 527 |
+ Tab clean up in the prelude file context file |
| 528 |
+ Changes to the prelude policy module |
| 529 |
+ Tab clean up in the privoxy file context file |
| 530 |
+ Changes to the privoxy policy module |
| 531 |
+ Tab clean up in the procmail file context file |
| 532 |
+ Changes to the procmail policy module |
| 533 |
+ Tab clean up in the psad file context file |
| 534 |
+ Changes to the psad policy module |
| 535 |
+ Changes to the ptchown policy module |
| 536 |
+ Tab clean up in the publicfile file context file |
| 537 |
+ Changes to the publicfile policy module |
| 538 |
+ Fix a fatal syntax error in mozilla_plugin_role() |
| 539 |
+ Changes to the plymouth policy module |
| 540 |
+ Changes to the policykit policy module |
| 541 |
+ Module version bump for fixes in shorewall, fail2ban and portage policy |
| 542 |
+ modules by Sven Vermeulen |
| 543 |
+ Tab clean up in the puppet file context file |
| 544 |
+ Changes to ther puppet policy module and relevant dependencies |
| 545 |
+ Initial pwauth policy module |
| 546 |
+ Tab clean up in the pxe file context file |
| 547 |
+ Changes to the pxe policy module |
| 548 |
+ Tab clean up in the pyzor file context file |
| 549 |
+ Changes to the pyzor policy module |
| 550 |
+ Tab clean up in the qemu file context file |
| 551 |
+ Changes to the qemu policy module |
| 552 |
+ Tab clean up in the virt file context file |
| 553 |
+ Changes to the virt policy module and relevant depedencies |
| 554 |
+ Changes to the virt policy module |
| 555 |
+ Changes to the cron policy module |
| 556 |
+ Changes to the qemu policy module |
| 557 |
+ Changes to the virt policy module |
| 558 |
+ Epylog wants sys_nice and setsched |
| 559 |
+ Tab clean up in the qmail file context file |
| 560 |
+ Changes to the qmail policy module |
| 561 |
+ Tab clean up in the qpid file context file |
| 562 |
+ Changes to the qpid policy module |
| 563 |
+ Tab clean up in the quota file context file |
| 564 |
+ Changes to the quota policy module and relevant dependencies |
| 565 |
+ Initial rabbitmq policy module |
| 566 |
+ Tab clean up in the radius file context file |
| 567 |
+ Changes to the radius policy module |
| 568 |
+ Tab clean up in the radvd file context file |
| 569 |
+ Changes to the radvd policy module |
| 570 |
+ Changes to the raid policy module |
| 571 |
+ Tab clean up in the razor file context file |
| 572 |
+ Changes to the razor policy module and relevant dependencies |
| 573 |
+ Smokeping cgi needs to run ping with a domain transition Remove |
| 574 |
+ redundant socket create already provided by |
| 575 |
+ sysnet_dns_name_resolve() |
| 576 |
+ Changes to the virt policy module |
| 577 |
+ Changes to the apache policy module |
| 578 |
+ Changes to the gnome policy module |
| 579 |
+ Changes to the rdisc policy mpdule |
| 580 |
+ Changes to the readahead policy module |
| 581 |
+ Changes to the remotelogin policy module |
| 582 |
+ Tab clean up in the resmgr file context file |
| 583 |
+ Changes to the resmgr policy module |
| 584 |
+ Tab clean up in the rgmanager file context file |
| 585 |
+ Changes to the rgmanager policy module |
| 586 |
+ Initial Realmd policy module and relevant dependencies |
| 587 |
+ Fix resmgrd init script file context specification |
| 588 |
+ Changes to the cups policy module |
| 589 |
+ automount reads overcommit_memory |
| 590 |
+ Changes to the networkmanager policy module |
| 591 |
+ Freshclam manages amavis spool content |
| 592 |
+ Changes to the tftp policy module |
| 593 |
+ Changes to the cobbler policy module |
| 594 |
+ Tab clean up in the rhcs file context file |
| 595 |
+ Changes to the rhcs policy module and relevant dependencies |
| 596 |
+ Tab clean up in the rhgb file context file |
| 597 |
+ Changes to the rhgb policy module |
| 598 |
+ Tab clean up in the rhsmcertd file context file |
| 599 |
+ Changes to the rhsmcertd policy module |
| 600 |
+ Tab clean up in the ricci file context file |
| 601 |
+ Changes to the ricci policy module |
| 602 |
+ Tab clean up in the rlogin file context file |
| 603 |
+ Changes to the rlogin policy module |
| 604 |
+ Tab clean up in the roundup file context file |
| 605 |
+ Changes to the roundup policy module |
| 606 |
+ Changes to the remotelogin policy module |
| 607 |
+ Changes to the apache policy module |
| 608 |
+ Changes to the awstats policy module |
| 609 |
+ fix puppet_admin() need to require types that it uses |
| 610 |
+ Replace wrong type in puppet_admin() |
| 611 |
+ Fix a syntax error in ricci_domtrans() |
| 612 |
+ Catch all rpcbind content in /var/run |
| 613 |
+ Changes to the cups policy module |
| 614 |
+ Tab clean up in the rpc file context file |
| 615 |
+ Changes to the rpc policy module |
| 616 |
+ Tab clean up in the rpcbind file context file |
| 617 |
+ Changes to the rpcbind policy module |
| 618 |
+ Tab clean up in the rpm file context file |
| 619 |
+ Changes to the rpm policy module and depedencies |
| 620 |
+ Changes to the rshd policy module |
| 621 |
+ Changes to the virt policy module |
| 622 |
+ Changes to the rssh policy module |
| 623 |
+ Tab clean up in the rsync file context file |
| 624 |
+ Fix a typo in apache XML |
| 625 |
+ Changes to the rsync policy module |
| 626 |
+ Changes to the rtkit policy module |
| 627 |
+ Tab clean up in the rwho file context file |
| 628 |
+ Changes to the rwho policy module |
| 629 |
+ Reads /proc/sys/kernel/random/poolsize |
| 630 |
+ Tab clean up in the samba file context file |
| 631 |
+ Changes to the samba policy module and relevant dependencies |
| 632 |
+ Tab clean up in the sambagui file context file |
| 633 |
+ Changes to the sambagui policy module |
| 634 |
+ Initial firewallgui policy module |
| 635 |
+ Tab clean up in the samhain file context file |
| 636 |
+ Changes to the samhain policy module |
| 637 |
+ Tab clean up in the sanlock file context file |
| 638 |
+ Changes to the sanlock policy module and relevant dependencies |
| 639 |
+ Tab clean up in the sasl file context file |
| 640 |
+ Changes to the sasl policy module |
| 641 |
+ Chnages to the sblim policy module |
| 642 |
+ Tab clean up in the screen file context file |
| 643 |
+ Changes to the screen policy module |
| 644 |
+ Tab clean up in the sectoolm file context file |
| 645 |
+ Changes to firewallgui policy module |
| 646 |
+ Changes to the sectoolm policy module |
| 647 |
+ Tab clean up in the sendmail file context file |
| 648 |
+ Changes to the sendmail policy module and relevant dependencies |
| 649 |
+ Tab clean up in the setroubleshoot file context file |
| 650 |
+ Changes to the setroubleshoot policy module |
| 651 |
+ Tab clean up in the shorewall file context file |
| 652 |
+ Changes to the shorewall policy module |
| 653 |
+ Tab clean up in the shutdown file context file |
| 654 |
+ Changes to the shutdown policy module and relevant dependencies |
| 655 |
+ Tab clean up in the slocate file context file |
| 656 |
+ Changes to the slocate policy module and relevant dependencies |
| 657 |
+ These domains transition to shutdown domain now so they no longer need |
| 658 |
+ direct access |
| 659 |
+ Re-add missing network rule in screen policy module |
| 660 |
+ fail2ban server sets scheduler |
| 661 |
+ shutdown XML clean up |
| 662 |
+ libvirtd sets kernel scheduler |
| 663 |
+ mongod reads cpuinfo_max_freq |
| 664 |
+ Changes to the slrnpull policy module |
| 665 |
+ Tab clean up in the smartmon file context file |
| 666 |
+ Changes to the smartmon policy module |
| 667 |
+ Tab clean up in the smokeping file context file |
| 668 |
+ Changes to the smokeping policy module |
| 669 |
+ Tab clean up in the smoltclient file context file |
| 670 |
+ Changes to the smoltclient policy module |
| 671 |
+ Tab clean up in the snmp file context file |
| 672 |
+ Changes to the snmp policy module |
| 673 |
+ Tab clean up in the snort file context file |
| 674 |
+ Changes to the snort policy module |
| 675 |
+ Changes to the sosreport policy module and relevant dependencies |
| 676 |
+ Tab clean up in the soundserver file context file |
| 677 |
+ Changes to the soundserver policy module |
| 678 |
+ Tab clean up in the spamassassin file context file |
| 679 |
+ Changes to the spamassassin policy module and relevant dependendies |
| 680 |
+ spamassassin_role callers create ~/.spamd with the spamd_home_t user |
| 681 |
+ home type instead |
| 682 |
+ Re-add sys_admin capability that was lost with porting from Fedora |
| 683 |
+ Move mailscanner content to mailscanner module |
| 684 |
+ Changes to the speedtouch policy module |
| 685 |
+ Tab clean up in the squid file context file |
| 686 |
+ Changes to the squid policy module |
| 687 |
+ Changes to the sssd policy module |
| 688 |
+ Tab clean up in the stunnel file context file |
| 689 |
+ Changes to the stunnel policy module |
| 690 |
+ Tab clean up in the sxid file context file |
| 691 |
+ Changes to the sxid policy module |
| 692 |
+ Tab clean up in the sysstat file context file |
| 693 |
+ Changes to the sysstat policy module |
| 694 |
+ Tab clean up in the tcpd file context file |
| 695 |
+ Changes to the tcpd policy module |
| 696 |
+ Changes to the tcsd policy module |
| 697 |
+ Tab clean up in the telepathy file context file |
| 698 |
+ Changes to the telepathy policy module |
| 699 |
+ Tab clean up in the telnet file context file |
| 700 |
+ Changes to the telnet policy module |
| 701 |
+ Tab clean up in the tftp file context file |
| 702 |
+ Changes to the tftp policy module |
| 703 |
+ Tab clean up in the tgtd file context file |
| 704 |
+ Changes to the tgtd policy module |
| 705 |
+ Tab clean up in the thunderbird file context file |
| 706 |
+ Changes to the thunderbird policy module |
| 707 |
+ Catch /var/log/cron directory as well |
| 708 |
+ Dovecot module version bump for fixes by Sven Vermeulen |
| 709 |
+ Portage module version bump for fixes by Sven Vermeulen |
| 710 |
+ Cron module version bump for fixes by Sven Vermeulen |
| 711 |
+ Changes to the exim policy module |
| 712 |
+ Entropyd reads /proc/meminfo |
| 713 |
+ Blueman reads tmp_t directories |
| 714 |
+ Do not audit attempts by cups config to read tmp_t directories |
| 715 |
+ Do not audit attempts by fail2ban to read tmp_t directories |
| 716 |
+ Do not audit attempts by firewalld to read tmp_t directories |
| 717 |
+ Gnomeclock reads urandom and realtime clock |
| 718 |
+ Kdumpctl needs sys_chroot capability |
| 719 |
+ Various kdumpgui fixes from Fedora |
| 720 |
+ Do not audit attempts by logwatch to read tmp_t directories |
| 721 |
+ Catch all alias files |
| 722 |
+ Refine aliases file transition with names |
| 723 |
+ Realmd dbus chat policykit and networkmanager from Fedora |
| 724 |
+ Do not audit attempts by tuned to read tmp_t directories |
| 725 |
+ Changes to the timidity policy module |
| 726 |
+ Tab clean up in the tmpreaper file context file |
| 727 |
+ Changes to the tmpreaper policy module and relevant dependencies |
| 728 |
+ Tab clean up in the tor file context file |
| 729 |
+ Changes to the tor policy module |
| 730 |
+ Changes to the transproxy policy module |
| 731 |
+ Tab clean up in the tripwire file context file |
| 732 |
+ Changes to the tripwire policy module |
| 733 |
+ Tab clean up in the tuned file context file |
| 734 |
+ Changes to the tuned policy module |
| 735 |
+ Tab clean up in the tvtime file context file |
| 736 |
+ Changes to the tvtime policy module |
| 737 |
+ Changes to the tzdata policy module |
| 738 |
+ Changes to the ucspitcp policy module |
| 739 |
+ Tab clean up in the ulogd file context file |
| 740 |
+ Changes to the ulogd policy module |
| 741 |
+ Tab clean up in the uml file context file |
| 742 |
+ Changes to the uml policy module |
| 743 |
+ Make it so that irc clients can also get attributes of cifs, nfs, fuse |
| 744 |
+ and other file systems |
| 745 |
+ Changes to the updfstab policy module |
| 746 |
+ Changes to the uptime policy module |
| 747 |
+ Tab clean up in the usbmodules file context file |
| 748 |
+ Changes to the usbmodule policy module |
| 749 |
+ Changes to the usbmuxd policy module |
| 750 |
+ Tab clean up in the userhelper file context file |
| 751 |
+ Screen sends child terminated signals to all interactive fd domains |
| 752 |
+ Changes to the userhelper policy module and relevant dependencies |
| 753 |
+ Changes to the virt policy module |
| 754 |
+ Module version bump for fail2ban changes by Sven Vermeulen |
| 755 |
+ Changes to the rpm policy module |
| 756 |
+ fix smartmon init script file context specification |
| 757 |
+ Changes to the usernetctl policy module |
| 758 |
+ Tab clean up in the uucp file context file |
| 759 |
+ Changes to the uucp policy module |
| 760 |
+ Changes to the virt policy module |
| 761 |
+ Tab clean up in the uuid file context file |
| 762 |
+ Changes to the uuidd policy module |
| 763 |
+ Tab clean up in the uwimap file context file |
| 764 |
+ Changes to the uwimap policy module |
| 765 |
+ Tab clean up in the varnishd file context file |
| 766 |
+ Changes to the varnishd policy module |
| 767 |
+ Changes to the vbetool policy module |
| 768 |
+ Tab clean up in the vdagent file context file |
| 769 |
+ Changes to the vdagent policy module |
| 770 |
+ Tab clean up in the vhostmd file context file |
| 771 |
+ Changes to the vhostmd policy module |
| 772 |
+ Changes to the vlock policy module |
| 773 |
+ Tab clean up in the vmware file context file |
| 774 |
+ Changes to the vmware policy module |
| 775 |
+ Tab clean up in the vnstatd file context file |
| 776 |
+ Changes to the vnstatd policy module |
| 777 |
+ Tab clean up in the vpn file context file |
| 778 |
+ Changes to the vpnc policy module |
| 779 |
+ Tab clean up in the w3c file context file |
| 780 |
+ Changes to the w3c policy module |
| 781 |
+ Tab clean up in the watchdog file context file |
| 782 |
+ Changes to the watchdog policy module |
| 783 |
+ Changes to the wdmd policy module |
| 784 |
+ Changes to the webadm policy modules |
| 785 |
+ Changes to the webalizer policy module |
| 786 |
+ White space fix in apache policy module |
| 787 |
+ Changes to the wine policy module |
| 788 |
+ Tab clean up in the wireshark file context file |
| 789 |
+ Changes to the wireshark policy module |
| 790 |
+ Tab clean up in the wm file context file |
| 791 |
+ Changes to the wm policy module |
| 792 |
+ Changes to the inn policy module |
| 793 |
+ Move man cache file type to miscfiles |
| 794 |
+ Changes to the inn policy module |
| 795 |
+ More accurate dbadm boolean descriptions |
| 796 |
+ mysql_admin() has access to ~/.my.cnf files |
| 797 |
+ Tab clean up in the xen file context file |
| 798 |
+ Changes to the xen policy module and relevant dependencies |
| 799 |
+ Tab clean up in the xfs file context file |
| 800 |
+ Changes to the xfs policy module |
| 801 |
+ Changes to the xguest policy module and relevant dependencies |
| 802 |
+ Changes to the xprint policy module |
| 803 |
+ Changes to the xscreensaver policy module |
| 804 |
+ Tab clean up in the yam file context file |
| 805 |
+ Changes to the yam policy module |
| 806 |
+ Tab clean up in the zabbix file context file |
| 807 |
+ Changes to the zabbix policy module |
| 808 |
+ Tab clean up in the zarafa file context file |
| 809 |
+ Changes to the zarafa policy module |
| 810 |
+ Tab clean up in the zebra file context file |
| 811 |
+ Changes to the zebra policy module |
| 812 |
+ Changes to the zosremote policy module |
| 813 |
+ Changes to the mysql policy module |
| 814 |
+ Tab clean up in the pulseaudio file context file |
| 815 |
+ Changes to the pulseaudio policy module and relevant dependencies |
| 816 |
+ Changes to the pulseaudio policy module |
| 817 |
+ One chown too many |
| 818 |
+ Changes to the mplayer policy module |
| 819 |
+ The prelink cron script now runs in its own domain |
| 820 |
+ Initial smstools policy module |
| 821 |
+ Initial openvswitch policy module and relevant dependencies |
| 822 |
+ Reads pcsd pid files |
| 823 |
+ Reads random device |
| 824 |
+ winbind manages smbd pid sock files from Fedora |
| 825 |
+ Changes to the bind policy module |
| 826 |
+ CG rules daemon reads all sysctls |
| 827 |
+ Runs consoletype and searches nfs state data from Fedora |
| 828 |
+ Support munin unbound plugin from Fedora |
| 829 |
+ Zabbix sends signals from Fedora |
| 830 |
+ Blueman sets scheduler and sends signals from Fedora |
| 831 |
+ pcscd_read_pub_files is deprecated, use pcscd_read_pid_files instead |
| 832 |
+ Module version bumps for fixes in portage and virt modules by Sven |
| 833 |
+ Vermeulen |
| 834 |
+ Policy module version bumps for various changes by Sven Vermeulen |
| 835 |
+ Changes to the openvpn policy module |
| 836 |
+ Module version bumps for various fixes by Sven Vermeulen |
| 837 |
+ Changes to the mandb policy module |
| 838 |
+ Changes to the tmpreaper policy module |
| 839 |
+ Changes to the munin policy module |
| 840 |
+ Changes to the rngd policy module |
| 841 |
+ Changes to the awstats policy module and relevant dependencies |
| 842 |
+ Changes to the apache policy module |
| 843 |
+ Changes to various policy modules |
| 844 |
+ Changes to the abrt policy module |
| 845 |
+ Changes to the passenger policy module and relevant depedencies |
| 846 |
+ Changes to the pegagus policy module |
| 847 |
+ Changes to the mta policy module |
| 848 |
+ Changes to the fetchmail policy module |
| 849 |
+ Changes to the bitlbee policy module |
| 850 |
+ Changes to the blueman policy module and relevant dependencies |
| 851 |
+ Changes to the amavis policy module |
| 852 |
+ Changes to the userhelper policy module |
| 853 |
+ Changes to the blueman policy module |
| 854 |
+ Changes to the squid policy module |
| 855 |
+ Changes to the sblim policy module |
| 856 |
+ Changes to the kdumpgui policy module |
| 857 |
+ Changes to the mailman policy module |
| 858 |
+ Changes to the realmd policy module |
| 859 |
+ Changes to the raid policy module |
| 860 |
+ Changes to the samba policy module |
| 861 |
+ Changes to the various policy modules |
| 862 |
+ Changes to the snmp policy module |
| 863 |
+ Changes to the spamassassin policy module |
| 864 |
+ Changes to the sssd policy module |
| 865 |
+ Changes to the l2tpd policy module |
| 866 |
+ Changes to the shorewall policy module |
| 867 |
+ Changes to the xen policy module |
| 868 |
+ Changes to the tftp policy modules |
| 869 |
+ Changes to the accountsd policy module |
| 870 |
+ Changes to the tgtd policy module |
| 871 |
+ Changes to the corosync policy module |
| 872 |
+ Changes to the kdump policy module |
| 873 |
+ Changes to the openvswitch policy module |
| 874 |
+ Changes to the mpd policy module |
| 875 |
+ Changes to the mozilla policy module |
| 876 |
+ Changes to the zarafa policy module |
| 877 |
+ Changes to the boinc policy module |
| 878 |
+ Changes to the setroubleshoot policy module |
| 879 |
+ Changes to the dspam policy module |
| 880 |
+ Changes to the rgrmanager policy module and relevant dependencies |
| 881 |
+ Changes to the svnserve policy module |
| 882 |
+ Changes to the virt policy module |
| 883 |
+ Changes to the prelink policy module |
| 884 |
+ Changes to the apache policy module |
| 885 |
+ Changes to the gnomeclock policy module |
| 886 |
+ Changes to various policy modules |
| 887 |
+ Changes to the pegagus policy module |
| 888 |
+ Changes to the shorewall policy module |
| 889 |
+ Changes to the kerberos policy module |
| 890 |
+ Changes to the rhcs policy module |
| 891 |
+ Changes to the irc policy module |
| 892 |
+ Changes to the clamav policy module |
| 893 |
+ Changes to the mrtg policy module |
| 894 |
+ Changes to the munin policy module |
| 895 |
+ Changes to the amavis policy module |
| 896 |
+ Changes to the ppp policy module |
| 897 |
+ Initial jockey policy module |
| 898 |
+ Module version bumps for "several named transition for directories |
| 899 |
+ created in /var/run by initscripts" in various modules by Laurent |
| 900 |
+ Bigonville |
| 901 |
+ Module version bumps for fixes in various modules by Laurent Bigonville |
| 902 |
+ Module version bump for changes to the consolekit policy module by |
| 903 |
+ Laurent Bigonville |
| 904 |
+ Changes to the stunnel policy module |
| 905 |
+ Module version bumps for fixes in various modules by Sven Vermeulen |
| 906 |
+ Changes to the virt policy module |
| 907 |
+ Changes to the apache policy module |
| 908 |
+ Changes to the wm policy module |
| 909 |
+ Changes to the samba policy module |
| 910 |
+ Changes to the certmonger policy module |
| 911 |
+ Changes to the mozilla policy module |
| 912 |
+ Changes to the corosync policy module |
| 913 |
+ Changes to the pacemaker policy module |
| 914 |
+ Changes to the tuned policy module |
| 915 |
+ Changes to the cups module and relevant dependencies |
| 916 |
+ Changes to the rhsmcertd policy module |
| 917 |
+ Changes to the lpd policy module |
| 918 |
+ Changes to the munin policy module |
| 919 |
+ Changes to the ntp policy module |
| 920 |
+ Changes to the tor policy module |
| 921 |
+ Changes to the firewalld policy module |
| 922 |
+ Changes to the dspam policy module |
| 923 |
+ Changes to the setroubleshoot policy module |
| 924 |
+ Changes to the condor policy module |
| 925 |
+ Changes to the kerberos policy module |
| 926 |
+ Changes to the passenger policy module |
| 927 |
+ Changes to the ppp policy module |
| 928 |
+ Changes to the the dkim policy module |
| 929 |
+ Changes to the abrt policy module |
| 930 |
+ Changes to the lircd policy module |
| 931 |
+ Changes to the dkim policy module |
| 932 |
+ Changes to the virt policy module |
| 933 |
+ Changes to the munin policy module |
| 934 |
+ Changes to the dovecot policy module |
| 935 |
+ Changes to the cobbler policy module |
| 936 |
+ Changes to the userhelper policy module |
| 937 |
+ Changes to the logwatch policy module |
| 938 |
+ Changes to the wdmd policy module and relevant dependencies |
| 939 |
+ Changes to the nscd policy module and relevant dependencies |
| 940 |
+ Changes to the dbus policy module |
| 941 |
+ Module version bumps for fixes in various policy modules by Laurent |
| 942 |
+ Bigonville |
| 943 |
+ Changes to the cups policy module |
| 944 |
+ Changes to the dbus policy module |
| 945 |
+ Changes to the apcupsd policy module |
| 946 |
+ Remove redundant net_bind_service capabilities in various modules |
| 947 |
+ Changes to the virt policy module |
| 948 |
+ Changes to the puppet policy module |
| 949 |
+ Module version bumps for fixes in various policy module by Sven |
| 950 |
+ Vermeulen |
| 951 |
+ Module version bumps for file context fixes in various policy modules by |
| 952 |
+ Laurent Bigonville |
| 953 |
+ Make httpd_manage_all_user_content() do what it advertises |
| 954 |
+ Add more networking rules to mplayer policy module for compatibility |
| 955 |
+ Fix fcronsighup file context. Should be crontab_exec_t as per previous |
| 956 |
+ spec |
| 957 |
+ Module version bumps for changes in various modules by Sven Vermeulen |
| 958 |
+ Move asterisk_exec() and modify XML header |
| 959 |
+ Consolekit creates /var/run/console directories with a type transition |
| 960 |
+ unconditionally |
| 961 |
+ Module version bump in consolekit policy module for changes by Sven |
| 962 |
+ Vermeulen |
| 963 |
+ The imaplogin executable file should be courier_pop_exec_t according to |
| 964 |
+ existing file context specification |
| 965 |
+ Module version bump for changes to the fail2ban policy module by Sven |
| 966 |
+ Vermeulen |
| 967 |
+ Modules version bumps for changes in various policy modules by Sven |
| 968 |
+ Vermeulen |
| 969 |
+ |
| 970 |
+Laurent Bigonville (28): |
| 971 |
+ Add Debian locations for Telepathy connection managers |
| 972 |
+ Label telepathy-rakia as telepathy-sofiasip |
| 973 |
+ Allow smartd daemon to write in /var/lib/smartmontools directory |
| 974 |
+ Add Debian location for smartd daemon initscript |
| 975 |
+ Add Debian location for accounts-daemon daemon |
| 976 |
+ Add Debian location for rtkit-daemon daemon |
| 977 |
+ Add Debian location for tcsd init script |
| 978 |
+ Add Debian location for libvirtd init script |
| 979 |
+ Add Debian location for evolution executables |
| 980 |
+ Add Debian locationis for nut executables and configuration files |
| 981 |
+ Add several named transition for directories created in /var/run by |
| 982 |
+ initscripts |
| 983 |
+ Run packagekit under apt_t context on Debian distribution |
| 984 |
+ Add proper label for colord daemon in debian |
| 985 |
+ Allow the system dbus to search cgroup directories |
| 986 |
+ Allow virtd_t context to read sysctl_crypto_t |
| 987 |
+ Allow colord_t context to read sysctl_crypto_t |
| 988 |
+ Add proper label for gconfd-2 daemon in Debian |
| 989 |
+ Ensure that consolekit can create /var/run/console directory on Debian |
| 990 |
+ Properly label nm-dispatcher.action on Debian |
| 991 |
+ policykit.fc: Properly label polkit-agent-helper-1 on Debian |
| 992 |
+ cups.fc: Properly label cups-pk-helper-mechanism on Debian |
| 993 |
+ Allow pcscd the fsetid capability |
| 994 |
+ Allow networkmanager_t to read crypto_sysctl_t |
| 995 |
+ Allow virsh_t context to read sysctl_crypto_t |
| 996 |
+ Allow cupsd_t to read cupsd_log_t |
| 997 |
+ gnomeclock.fc: Properly label gsd-datetime-mechanism in Debian |
| 998 |
+ ptchown.fc: Properly label pt_chown executable in Debian |
| 999 |
+ Label /usr/bin/kvm as qemu_exec_t |
| 1000 |
+ |
| 1001 |
+Matthew Thode (2): |
| 1002 |
+ added autofs support and nsswitch support |
| 1003 |
+ removing refrences to named_var_lib_t as it doesn't exist anymore for |
| 1004 |
+ bind.if |
| 1005 |
+ |
| 1006 |
+Mika Pflüger (3): |
| 1007 |
+ Allow saslauthd_t to talk to mysqld via TCP |
| 1008 |
+ Quota policy adjustments: * Allow quota_t to load kernel modules |
| 1009 |
+ Debian locations for dovecot deliver and dovecot auth. |
| 1010 |
+ |
| 1011 |
+Russell Coker (1): |
| 1012 |
+ Fix djbdns ports |
| 1013 |
+ |
| 1014 |
+Sven Vermeulen (75): |
| 1015 |
+ Update with new substitutions |
| 1016 |
+ Mark the pid directory as a pid directory |
| 1017 |
+ Add in transitions for queue types when the queues are created |
| 1018 |
+ Fix typo in interface postfix_exec_postqueue |
| 1019 |
+ Allow maildelivery to use dotlock files in the mail spool |
| 1020 |
+ Allow postfix local to change ownership of mailfiles |
| 1021 |
+ Use libexec location for postfix binaries |
| 1022 |
+ Allow initrc_t to create run dirs for contrib modules |
| 1023 |
+ Update logwatch location in file context |
| 1024 |
+ Sandbox is an inherent part of the portage inner workings |
| 1025 |
+ Fix startup issue with fail2ban-client |
| 1026 |
+ Be able to get output from fail2ban-client |
| 1027 |
+ Ignore searches when ran from the user home directory |
| 1028 |
+ Shorewall admins execute shorewall too |
| 1029 |
+ Shorewall needs sys_admin capability for manipulating network stack |
| 1030 |
+ Be able to display dovecot errors |
| 1031 |
+ Remove transition to ldconfig |
| 1032 |
+ Adding interfaces for handling cron log files |
| 1033 |
+ Fail2ban client checks state of log files before telling the server |
| 1034 |
+ Support mysql init script |
| 1035 |
+ Support initial creation of mysql database files |
| 1036 |
+ Portage fetch domain needs to access certificates |
| 1037 |
+ Make samba domtrans optional in virt |
| 1038 |
+ Fix typo in tunable declaration for fcron_crond |
| 1039 |
+ Introducing cron_manage_log_files interface |
| 1040 |
+ Introduce dontaudit interfaces for leaked fd and unix stream sockets |
| 1041 |
+ Dontaudit attempts by system_mail_t to use leaked fd or stream sockets |
| 1042 |
+ Support at service |
| 1043 |
+ Additional postfix admin requirements |
| 1044 |
+ Reintroduce postfix_var_run_t for pid directory and fowner capability |
| 1045 |
+ Postfix deferred queue should not mark mails as postfix_spool_maildrop_t |
| 1046 |
+ Running qemu with SDL support requires more xserver-related privileges |
| 1047 |
+ Fix typo in clockspeed comment |
| 1048 |
+ Support openvpn status file |
| 1049 |
+ Asterisk voicemail messages are generated from tmp |
| 1050 |
+ Make rtkit calls optional |
| 1051 |
+ Gentoo installs dovecot certs in /etc/ssl/dovecot |
| 1052 |
+ Moving sandbox code to sandbox section (v2) |
| 1053 |
+ Allow sandbox to log violations |
| 1054 |
+ Use rw_fifo_file_perms |
| 1055 |
+ Apache should not depend on gpg |
| 1056 |
+ Named init script creates rundir |
| 1057 |
+ Add ~/.maildir as a valid maildir destination |
| 1058 |
+ Support stunnel_read_config for startup |
| 1059 |
+ Updates on stunnel policy |
| 1060 |
+ More .maildir fixes |
| 1061 |
+ Mark make.profile entry as portage_conf_t (v2) |
| 1062 |
+ Move mta call (coding style) |
| 1063 |
+ Changes to puppet domain |
| 1064 |
+ Allow rpc admin to run exportfs |
| 1065 |
+ Grant sys_admin capability to puppet |
| 1066 |
+ Puppet module helper scripts are puppet_var_lib_t |
| 1067 |
+ Support netlink_route_socket creation for puppet |
| 1068 |
+ Puppet initscript creates /run/puppet |
| 1069 |
+ Puppet runs statfs against selinuxfs |
| 1070 |
+ mplayer streams HTTP resources |
| 1071 |
+ fcron and fcronsighup binaries are moved |
| 1072 |
+ Asterisk needs to search through logs |
| 1073 |
+ Denial in mail log on node bind |
| 1074 |
+ Fix typo in mcelog_admin (missing bracket) |
| 1075 |
+ Add in contexts for fcron rm.systab and systab.tmp |
| 1076 |
+ Remove pulseaudio filename_trans conflict |
| 1077 |
+ Allow asterisk admins to execute asterisk binary directly |
| 1078 |
+ Support tagfiles for consolekit |
| 1079 |
+ ConsoleKit needs to read the dbus machine-id |
| 1080 |
+ File context updates for courier-imap |
| 1081 |
+ Update on file contexts for OpenLDAP |
| 1082 |
+ Update on file contexts for wpa_supplicant |
| 1083 |
+ Allow IRC clients to read certificates |
| 1084 |
+ Allow reading /proc/self for fail2ban due to FAM support |
| 1085 |
+ Update file contexts for puppet |
| 1086 |
+ Support ~/.tmux.conf as tmux configuration file |
| 1087 |
+ Add setuid/setgid capability to ulogd_t |
| 1088 |
+ Support tmux control socket |
| 1089 |
+ Postfix creates defer(red) queue locations |
| 1090 |
+ |
Archives