From: dwalsh@redhat.com (Daniel J Walsh)
Date: Fri, 12 Jun 2009 16:17:20 -0400
Subject: [refpolicy] services_rsync.patch
In-Reply-To: <1244835859.4230.527.camel@gorn.columbia.tresys.com>
References: <4A2DB545.4030605@redhat.com>
	<1244835859.4230.527.camel@gorn.columbia.tresys.com>
Message-ID: <4A32B7D0.2000109@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 06/12/2009 03:44 PM, Christopher J. PeBenito wrote:
> On Mon, 2009-06-08 at 21:05 -0400, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_rsync.patch
>>
>> Add client capabilities.
This particular client is for a cron job or init script that starts 
rsync to copy files from remote sites to the local machine.

Since both start from initrc_t, kind of hard to create another type.
>
> I disagree with this part.  This policy is for the server only.  Clients
> should run in the calling domain, for example the user's domain.
>
>> Allow export of nfs files over rsync
>
> merged this.
>