[refpolicy] [PATCH 1/2] Label /bin/fusermount like /usr/bin/fusermount
Started by Laurent Bigonville on 2013-12-16 16:08:18 |
2
|
2013-12-20 20:18:51 by cpebenito
|
[refpolicy] [PATCH] Correct typo in passenger module name
Started by debian on 2013-12-16 00:51:32 |
1
|
2013-12-20 19:59:13 by cpebenito
|
[refpolicy] unexpected AVC. how to dig deeper?
Started by ossman on 2013-12-19 15:02:16 |
2
|
2013-12-19 20:17:30 by ossman
|
[refpolicy] RFC: direct_init_entry breaks direct_initrc
Started by sven.vermeulen on 2013-12-11 08:33:40 |
3
|
2013-12-11 10:31:12 by dominick.grift
|
[refpolicy] flask.py and its stuff
Started by Andrew V. Stepanov on 2013-11-25 09:30:04 |
1
|
2013-12-11 08:00:03 by Andrew V. Stepanov
|
[refpolicy] [PATCH 5/5] Make direct_sysadm_daemon apply to unconfined_t
Started by errno13 on 2013-12-07 19:21:04 |
2
|
2013-12-10 14:57:50 by dominick.grift
|
[refpolicy] [PATCH 3/5] init: in redhat derived distributions the kernel (systemd) dynamically transitions to init
Started by errno13 on 2013-12-07 19:19:55 |
1
|
2013-12-07 19:31:15 by dominick.grift
|
[refpolicy] [PATCH 4/5] kernel: plymouthd requires cap_syslog at least in distro_redhat. I have not yet encountered this in distro_debian
Started by errno13 on 2013-12-07 19:20:29 |
0
|
2013-12-07 19:20:29 by errno13
|
[refpolicy] [PATCH 2/5] filesystems: /dev/hugepages (hugetlbfs_t) associates with device_t filesystem
Started by errno13 on 2013-12-07 19:19:00 |
0
|
2013-12-07 19:19:00 by errno13
|
[refpolicy] [PATCH 1/5] xserver: These are no longer needed
Started by errno13 on 2013-12-07 19:17:43 |
0
|
2013-12-07 19:17:43 by errno13
|
[refpolicy] [PATCH] Label /etc/cron.daily/logrotate correctly.
Started by Mira Ressel on 2013-11-17 12:53:07 |
3
|
2013-11-19 08:44:49 by dominick.grift
|
[refpolicy] [PATCH] Only label administrative postgres commands as postgresql_exec_t
Started by Mira Ressel on 2013-11-17 12:52:57 |
4
|
2013-11-18 20:15:52 by Mira Ressel
|
[refpolicy] [PATCH] Only label administrative postgres commands as postgresql_exec_t
Started by Mira Ressel on 2013-11-17 13:32:00 |
1
|
2013-11-17 13:34:45 by Mira Ressel
|
[refpolicy] [PATCH] Label /etc/cron.daily/logrotate correctly.
Started by Mira Ressel on 2013-11-17 13:31:50 |
0
|
2013-11-17 13:31:50 by Mira Ressel
|
[refpolicy] sysadm_t: allow writes to proc_net_t files
Started by Mira Ressel on 2013-11-16 16:52:13 |
0
|
2013-11-16 16:52:13 by Mira Ressel
|
[refpolicy] [PATCH 1/1] Allow semodule to create symlink in semanage_store_t
Started by sven.vermeulen on 2013-11-04 21:15:13 |
2
|
2013-11-13 14:19:25 by cpebenito
|
[refpolicy] [PATCH 1/1] Allow capabilities for syslog-ng
Started by sven.vermeulen on 2013-10-21 18:52:05 |
1
|
2013-11-13 14:15:54 by cpebenito
|
[refpolicy] [PATCH 1/1] Generalize syslog-ng pattern for syslogd_var_run_t
Started by sven.vermeulen on 2013-10-21 18:37:20 |
1
|
2013-11-13 14:15:18 by cpebenito
|
[refpolicy] [RFC] Add security class and access vector permissions for systemd
Started by Laurent Bigonville on 2013-11-11 14:12:31 |
1
|
2013-11-11 15:19:31 by Daniel Walsh
|
[refpolicy] [RFC] userdomain: manage and relabel xdg home content
Started by dominick.grift on 2013-11-09 09:40:35 |
0
|
2013-11-09 09:40:35 by dominick.grift
|
[refpolicy] [RFC] Changes with regard to XDG base dir spec:
Started by dominick.grift on 2013-11-09 09:39:58 |
0
|
2013-11-09 09:39:58 by dominick.grift
|
[refpolicy] [RFC] Initial XDG base dir spec policy module
Started by dominick.grift on 2013-11-09 08:47:05 |
0
|
2013-11-09 08:47:05 by dominick.grift
|
[refpolicy] [RFC] Need for read_policy to use audit2allow?
Started by sven.vermeulen on 2013-11-04 21:42:10 |
1
|
2013-11-07 14:07:42 by cpebenito
|
[refpolicy] [PATCH] Allow initrc_t to create /var/run/opendkim
Started by Mira Ressel on 2013-11-03 14:11:12 |
1
|
2013-11-03 16:08:22 by dominick.grift
|
[refpolicy] [PATCH 1/1] Allow rngd to write a pid file
Started by sven.vermeulen on 2013-10-21 18:33:03 |
1
|
2013-11-03 15:58:58 by dominick.grift
|
[refpolicy] kdevtmpfs
Started by Mira Ressel on 2013-11-02 19:59:41 |
0
|
2013-11-02 19:59:41 by Mira Ressel
|
[refpolicy] use_ecryptfs_home_dirs boolean
Started by yzj_705 on 2013-11-01 01:58:05 |
1
|
2013-11-01 16:43:32 by dominick.grift
|
[refpolicy] SELinux Configuration
Started by Gary_Cliff on 2013-10-29 20:55:21 |
1
|
2013-10-29 21:53:21 by dominick.grift
|
[refpolicy] SELinux Reference Policy
Started by Gary_Cliff on 2013-10-25 15:45:40 |
1
|
2013-10-25 17:09:27 by dominick.grift
|
[refpolicy] I think we made a large mistake when we designed apache_content_template.
Started by Daniel Walsh on 2013-10-23 17:57:05 |
8
|
2013-10-23 20:22:25 by dominick.grift
|
[refpolicy] [PATCH] Generalize grub2 pattern
Started by Mira Ressel on 2013-10-22 20:47:25 |
0
|
2013-10-22 20:47:25 by Mira Ressel
|
[refpolicy] [PATCH 00/11] Contrib changes
Started by sven.vermeulen on 2012-12-08 20:56:51 |
25
|
2013-10-05 07:22:59 by dominick.grift
|
[refpolicy] [PATCH] sysnetwork: dhcpc binds socket to random high udp ports sysnetwork: do not audit attempts by ifconfig to read, and write dhcpc udp sockets (looks like a leaked fd)
Started by dominick.grift on 2013-09-27 09:35:41 |
2
|
2013-09-27 21:09:01 by dominick.grift
|
[refpolicy] [PATCH 04/20] seutils: restorecon wants to read /run symbolic link
Started by dominick.grift on 2013-09-24 13:39:16 |
4
|
2013-09-27 21:03:27 by dominick.grift
|
[refpolicy] [PATCH 16/20] mount: sets kernel thread priority mount: mount reads /lib/modules/3.10-2-amd64/modules.dep mount: mount lists all mount points
Started by dominick.grift on 2013-09-24 13:40:14 |
2
|
2013-09-27 20:58:49 by dominick.grift
|
[refpolicy] [PATCH] udev: runs: /usr/lib/avahi/avahi-daemon-check-dns.sh which creates /run/avahi-daemon directory
Started by dominick.grift on 2013-09-27 11:35:20 |
1
|
2013-09-27 20:40:41 by cpebenito
|
[refpolicy] [PATCH 09/20] udev-acl.ck lists /run/udev/tags/udev-acl udev blocks suspend, and compromises kernel
Started by dominick.grift on 2013-09-24 13:39:40 |
1
|
2013-09-27 20:37:23 by cpebenito
|
[refpolicy] [PATCH] ssh: Debian sshd is configured to use capabilities
Started by dominick.grift on 2013-09-27 11:36:07 |
1
|
2013-09-27 20:27:40 by cpebenito
|
[refpolicy] [PATCH] selinuxutil: semanage create, rmdir, rename directories tmp, active, previous in /etc/selinux/default/modules/ when i use semanage fcontext -a ...
Started by dominick.grift on 2013-09-27 09:26:55 |
4
|
2013-09-27 20:25:11 by dominick.grift
|
[refpolicy] [PATCH][v2] hostname: do not audit attempts by hostname to read and write dhcpc udp sockets (looks like a leaked fd)
Started by dominick.grift on 2013-09-27 08:36:14 |
1
|
2013-09-27 19:56:18 by cpebenito
|
[refpolicy] [PATCH] corenetwork: Declare gdomap port, tcp/udp:538
Started by dominick.grift on 2013-09-27 11:36:42 |
1
|
2013-09-27 19:09:43 by cpebenito
|
[refpolicy] [PATCH][v2] xserver: associate xconsole_device_t (/dev/xconsole) to device_t (devtmpfs)
Started by dominick.grift on 2013-09-27 16:31:26 |
1
|
2013-09-27 18:45:00 by cpebenito
|
[refpolicy] [PATCH] xserver: catch /run/gdm3
Started by dominick.grift on 2013-09-26 21:47:15 |
1
|
2013-09-27 18:44:27 by cpebenito
|
[refpolicy] [PATCH] sysnetwork: Debian stores network interface configuration in /run/network (ifstate), That directory is created by the /etc/init.d/networking script.
Started by dominick.grift on 2013-09-26 21:46:32 |
1
|
2013-09-27 18:43:17 by cpebenito
|
[refpolicy] [PATCH] xserver: associate xconsole_device_t (/dev/xconsole) to device_t (devtmpfs)
Started by dominick.grift on 2013-09-27 16:16:20 |
0
|
2013-09-27 16:16:20 by dominick.grift
|
[refpolicy] [PATCH] hostname: do not audit attempts by hostname to read and write dhcpc udp sockets (looks like a leaked fd)
Started by dominick.grift on 2013-09-27 08:29:36 |
0
|
2013-09-27 08:29:36 by dominick.grift
|
[refpolicy] [PATCH 08/20] ssh: sshd connects to avahi with a unix domain socket ssh: sshd gets and sets capabilities in debian
Started by dominick.grift on 2013-09-24 13:39:35 |
4
|
2013-09-26 15:19:35 by dominick.grift
|
[refpolicy] [PATCH] xdm: is a system bus client and acquires service on the system bus xdm: dbus chat with accounts-daemon
Started by dominick.grift on 2013-09-26 13:35:49 |
1
|
2013-09-26 14:52:37 by cpebenito
|
[refpolicy] [PATCH 1/1] Extend slim /var/run expression
Started by sven.vermeulen on 2013-09-25 18:26:31 |
1
|
2013-09-26 14:49:18 by cpebenito
|
[refpolicy] [PATCH 1/1] Allow ping to get/set capabilities
Started by sven.vermeulen on 2013-09-25 18:27:34 |
1
|
2013-09-26 14:49:07 by cpebenito
|