From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Sun, 6 Feb 2011 20:57:55 +0100
Subject: [refpolicy] [PATCH 1/3] Adding sudo_db_t type for sudo
 timestamp database/directory
In-Reply-To: <4D4ECFD0.9050001@gmail.com>
References: <20110206145516.GA12283@siphos.be>
 <4D4ECFD0.9050001@gmail.com>
Message-ID: <20110206195755.GA25328@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Sun, Feb 06, 2011 at 05:44:00PM +0100, Dominick Grift wrote:
[... snip introducing a new type for /var/db/sudo ...]
> I handled this in a different way:
> 
> authlogin.fc:
> 
> # Fedoras sudo moved from run to db, not sure if pam is still involved.
> /var/run/sudo(/.*)?		gen_context(system_u:object_r:pam_var_run_t,s0)
> /var/db/sudo(/.*)?		gen_context(system_u:object_r:pam_var_run_t,s0)

Fair enough; /var/db/sudo is indeed the new target but for exactly the same
functionality. See also http://www.sudo.ws/repos/sudo/rev/8c9440423d98

I'll resubmit a new patch for this. Thanks for the feedback.

Wkr,
	Sven Vermeulen