http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_rsync.patch
Add client capabilities.
Allow export of nfs files over rsync
On Mon, 2009-06-08 at 21:05 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_rsync.patch
>
> Add client capabilities.
I disagree with this part. This policy is for the server only. Clients
should run in the calling domain, for example the user's domain.
> Allow export of nfs files over rsync
merged this.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
On 06/12/2009 03:44 PM, Christopher J. PeBenito wrote:
> On Mon, 2009-06-08 at 21:05 -0400, Daniel J Walsh wrote:
>> http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_rsync.patch
>>
>> Add client capabilities.
This particular client is for a cron job or init script that starts
rsync to copy files from remote sites to the local machine.
Since both start from initrc_t, kind of hard to create another type.
>
> I disagree with this part. This policy is for the server only. Clients
> should run in the calling domain, for example the user's domain.
>
>> Allow export of nfs files over rsync
>
> merged this.
>