From: dwalsh@redhat.com (Daniel J Walsh)
Date: Mon, 12 Jul 2010 10:59:37 -0400
Subject: [refpolicy] roles_auditadm.patch
In-Reply-To: <4C332130.1090106@tresys.com>
References: <4C06BEE1.3090502@redhat.com> <4C332130.1090106@tresys.com>
Message-ID: <4C3B2DD9.50906@redhat.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 07/06/2010 08:27 AM, Christopher J. PeBenito wrote:
> On 06/02/10 16:28, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F14/roles_auditadm.patch
>>
>> Auditadmin should be able to connect to the syslog. Dontaudit search
>> /root.
> 
> Not clear why auditadm would connecting to syslog; what program are they
> running?  Also, the interface doesn't exist.
> 

This is some old stuff, but I guess it would have to do with changing
the way syslog worked.

Probably needs the ability to manage the syslog/auditd process also.