From: cpebenito@tresys.com (Christopher J. PeBenito)
Date: Thu, 18 Mar 2010 10:19:53 -0400
Subject: [refpolicy] system_init.patch
In-Reply-To: <4B8455C5.5000808@redhat.com>
References: <4B8455C5.5000808@redhat.com>
Message-ID: <1268921993.5623.60.camel@gorn.columbia.tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Tue, 2010-02-23 at 17:25 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F13/system_init.patch
> 
> Lots of changes to init.

Dropping startx and system-config-services fc, as they don't make sense.
The former stops unpriv users from running startx from the terminal, and
init scripts should be configured by admins, so transitioning to init
script domains to configure init scripts seems wrong.

Fixed dontaudit_init_read_all_script_files() interface name to
init_dontaudit_read_all_script_files().

Dropped init_t and initrc_t audit capabilities; use logging interfaces.

What is an example of an init script doing a kernel module load request?

Why does initrc need to delete /dev/null?

Why does initrc need to transition to passwd?

Dropped the init_upstart addition in init_daemon_domain() as it causes
duplicate type transition errors.

Why would we want to allow signal inheritance?

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150