From: dwalsh@redhat.com (Daniel J Walsh)
Date: Wed, 02 Jun 2010 16:31:26 -0400
Subject: [refpolicy] roles_staff.patch
Message-ID: <4C06BF9E.6030300@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

http://people.fedoraproject.org/~dwalsh/SELinux/F14/roles_staff.patch

Allow staff user to exec files on removable devices

Needs access to run sandbox

Additional access for staff reading kernel info.

staff_t needs to run newrole to relabel content in his homedir

Needs to run ping

Added distro_redhat to eliminate all of the transitions that we did not 
want.