From: cpebenito@tresys.com (Christopher J. PeBenito)
Date: Tue, 01 Dec 2009 10:32:45 -0500
Subject: [refpolicy] apps_seunshare.patch
In-Reply-To: <4AFC760C.9030708@redhat.com>
References: <4AFC760C.9030708@redhat.com>
Message-ID: <1259681565.16538.273.camel@gorn.columbia.tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Thu, 2009-11-12 at 15:54 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F12/apps_seunshare.patch
> 
> Fixes for seunshare policy
> 
> seunshare needs to be killable by calling apps
> 
> Since it is called by firefox and freinds lots of leaks need to be
> dontaudited
> 
> seunshare needs setuid, dav_override and sys_admin to mount /home
> and /tmp
> 
> sends syslog messages
> 
Merged.

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150