| 1 |
Hi all, |
| 2 |
|
| 3 |
I have pushed out an update on the SELinux policies in hardened-dev. The |
| 4 |
changes include: |
| 5 |
|
| 6 |
- #389579 (Mismatch on amavisd.conf context) |
| 7 |
- #389917 (Allow resource management from within inetd -> pam_limits |
| 8 |
support) |
| 9 |
- #388875 (bootmisc init script test-writes directories in /var/log) |
| 10 |
- #389569 (nagios updates, such as raid checking & mounted dir attributes) |
| 11 |
- <no bug> (Added selinux-uwimap build as requested on mailinglist) |
| 12 |
- <no bug> (gcc-config needs to manage etc_runtime_t files) |
| 13 |
- <no bug> (gcc-config needs access to nfs_t if Portage tree is on NFS) |
| 14 |
- <upstream> (Updated VDE patch to match upstream style) |
| 15 |
|
| 16 |
I have also cleaned out our previous policies in the main portage tree |
| 17 |
(those before 2.20110627) which was quite some work (removal itself doesn't |
| 18 |
take that much time, but verifying that one isn't going to break systems is) |
| 19 |
but I'm glad that is now done. |
| 20 |
|
| 21 |
Wkr, |
| 22 |
Sven Vermeulen |
Archives