From: cpebenito@tresys.com (Christopher J. PeBenito)
Date: Wed, 17 Mar 2010 14:40:11 -0400
Subject: [refpolicy] system_logging.patch
In-Reply-To: <4B8453BC.1080601@redhat.com>
References: <4B8453BC.1080601@redhat.com>
Message-ID: <1268851211.13301.87.camel@gorn.columbia.tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Tue, 2010-02-23 at 17:16 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F13/system_logging.patch
> 
> New log context
> 
> Allow setting audit tty
> 
> Fixing interfaces

Why are the sockets being set to system high?  Same thing for the pid
file?  They don't have sensitive data.

The logging_manage_all_logs() change is excessive, as "manage" doesn't
include relabeling.

Why does auditd need to use nsswitch?

Otherwise merged.

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150