From: dwalsh@redhat.com (Daniel J Walsh)
Date: Tue, 14 Oct 2008 15:49:26 -0400
Subject: [refpolicy] services_rpc.patch
Message-ID: <48F4F7C6.2020106@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_rpc.patch

All rpc bind domains call bindresvports witch binds to ports 600-1023
(rpc ports)

Add interface to start rpcd_t

Label /etc/exports as a config file

Dontaudit rpcd_t looking at kernel core interface


Transition files created in users home dirs to proper label.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAkj098YACgkQrlYvE4MpobO/BACaA4JLhtWYVf3oURtX2D+7b7gP
wvsAmwRt8KAmk0lrqSDbXHkD5NYU4L43
=ITq4
-----END PGP SIGNATURE-----