Dan Walsh
8e1859c6db
Change sepolgen-ifgen to search all available policy files
...
Fix portspage in system-config-selinux to not crash
fix to sandbox
Fix seunshare to use more secure handling of /tmp
Rewrite seunshare to make sure /tmp is mounted stickybit owned by root
Change to allow sandbox to run on nfs homedirs, add start python script
change default location of HOMEDIR in sandbox to /tmp/.sandbox_home_*
Move seunshare to sandbox package
Fix sandbox to show correct types in usage statement
2011-03-15 09:54:33 -04:00
Dan Walsh
0bdae65be9
- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.
2010-09-14 17:35:00 -04:00
Dan Walsh
680e7f371a
- Eliminate quotes fro desktop files
2010-09-07 14:29:30 -04:00
Dan Walsh
da69073802
- Tighten down seunshare to create /tmp dir with sticky bit and MS_NODEV | MS_NOSUID | MS_NOEXEC;
...
- Remove setsid on seunshare so ^c on sandbox will cause apps to exit
- Add dbus-launch --exit-with-session so all processes launched within the sandbox exit with the sandbox
- Clean up error handling so error will get sent back to sandbox tool
2010-08-25 08:58:00 -04:00
Dan Walsh
8ceb5eceb9
- Fix sandbox error handling
2010-08-13 17:02:34 -04:00
Dan Walsh
27aa4ea173
* Tue Jul 27 2010 Dan Walsh <dwalsh@redhat.com> 2.0.83-7
...
- Update translations
2010-07-30 13:20:11 -04:00
Daniel J Walsh
9cf7149c36
* Wed Jun 2 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-25
...
- Fix audit2allow to output if the current policy has avc
- Update translations
- Fix icon
2010-06-02 13:24:03 +00:00
Daniel J Walsh
a941635169
* Mon May 3 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-14
...
- Allow audit2allow to specify alternative policy file for analysis
- Update po
- Fix sepolgen --no_attrs
Resolves : #588280
2010-05-04 17:20:26 +00:00
Daniel J Walsh
34a8ec78f7
* Tue Apr 27 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-9
...
- Make sepolgen-ifgen be quiet
2010-04-27 12:41:02 +00:00
Daniel J Walsh
cb03303e2a
* Wed Apr 14 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-6
...
- Remove debug line from semanage
- Update po
2010-04-14 13:02:56 +00:00
Daniel J Walsh
4a46e3ba98
* Wed Mar 31 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-3
...
- Fix semanage return codes
2010-03-31 22:27:27 +00:00
Daniel J Walsh
cf47f6f7a3
* Tue Mar 23 2010 Dan Walsh <dwalsh@redhat.com> 2.0.82-1
...
- Update to upstream
* Add avc's since boot from Dan Walsh.
* Fix unit tests from Dan Walsh.
2010-03-24 20:14:14 +00:00
Daniel J Walsh
cc1f471500
* Tue Mar 16 2010 Dan Walsh <dwalsh@redhat.com> 2.0.81-2
...
- Fix semanage handling of boolean options
- Update translations
2010-03-16 18:18:01 +00:00
Daniel J Walsh
1ff0435303
* Mon Mar 1 2010 Dan Walsh <dwalsh@redhat.com> 2.0.79-5
...
- Rewrite of sandbox script, add unit test for sandbox
- Update translations
2010-03-04 21:49:04 +00:00
Daniel J Walsh
a1bf0daa6c
* Wed Dec 16 2009 Dan Walsh <dwalsh@redhat.com> 2.0.78-5
...
- If restorecond running as a user has no files to watch then it should exit. (NFS Homedirs)
2009-12-16 13:21:49 +00:00
Daniel J Walsh
bf48090916
* Thu Oct 15 2009 Dan Walsh <dwalsh@redhat.com> 2.0.74-10
...
- Remove translations screen from system-config-selinux
2009-10-15 21:46:14 +00:00
Daniel J Walsh
f466aa0b3b
* Wed Sep 30 2009 Dan Walsh <dwalsh@redhat.com> 2.0.74-5
...
- Fixes for semanage -equiv, readded modules, --enable, --disable
2009-09-30 15:37:12 +00:00
Daniel J Walsh
f109f0076e
* Mon Sep 14 2009 Dan Walsh <dwalsh@redhat.com> 2.0.73-3
...
- Fix restorecond script to use force-reload
2009-09-14 19:39:09 +00:00
Daniel J Walsh
7ae4fd64fa
* Tue Sep 8 2009 Dan Walsh <dwalsh@redhat.com> 2.0.73-1
...
- Update to upstream
* Add semanage dontaudit to turn off dontaudits from Dan Walsh.
* Fix semanage to set correct mode for setrans file from Dan Walsh.
* Fix malformed dictionary in portRecord from Dan Walsh.
* Restore symlink handling support to restorecon based on a patch by
Martin Orr. This fixes the restorecon /dev/stdin performed by Debian
udev scripts that was broken by policycoreutils 2.0.70.
2009-09-08 14:15:50 +00:00
Daniel J Walsh
d03de9fdcd
* Sun Jul 29 2009 Dan Walsh <dwalsh@redhat.com> 2.0.68-1
...
- Fix location of man pages
- Update to upstream
* Modify setfiles to exclude mounts without seclabel option in
/proc/mounts on kernels >= 2.6.30 from Thomas Liu.
* Re-enable disable_dontaudit rules upon semodule -B from Christopher
Pardy and Dan Walsh.
* setfiles converted to fts from Thomas Liu.
2009-07-29 13:43:53 +00:00
Daniel J Walsh
096b58de8c
* Fri Jun 26 2009 Dan Walsh <dwalsh@redhat.com> 2.0.64-1
...
- Update to upstream
* Keep setfiles from spamming console from Dan Walsh.
* Fix chcat's category expansion for users from Dan Walsh.
- Update po files
- Fix sepolgen
2009-06-26 18:48:24 +00:00
Daniel J Walsh
e265547be3
* Wed Apr 22 2009 Dan Walsh <dwalsh@redhat.com> 2.0.62-14
...
- Fix audit2allow -a to retun /var/log/messages
2009-05-12 19:32:47 +00:00
Daniel J Walsh
28aeded808
* Wed Apr 8 2009 Dan Walsh <dwalsh@redhat.com> 2.0.62-8
...
- Update po files
- Add --equiv command for semanage
2009-04-09 02:05:21 +00:00
Daniel J Walsh
e5ab0eb59c
* Tue Mar 31 2009 Dan Walsh <dwalsh@redhat.com> 2.0.62-7
...
- Cleanup creation of permissive domains
- Update po files
2009-03-31 12:56:45 +00:00
Daniel J Walsh
ca6c46fd19
* Mon Mar 23 2009 Dan Walsh <dwalsh@redhat.com> 2.0.62-6
...
- Update po files
2009-03-23 13:31:01 +00:00
Daniel J Walsh
badeadc2fc
* Wed Feb 18 2009 Dan Walsh <dwalsh@redhat.com> 2.0.62-1
...
- Update to upstream
* Add btrfs to fixfiles from Dan Walsh.
* Remove restorecond error for matching globs with multiple hard links
and fix some error messages from Dan Walsh.
* Make removing a non-existant module a warning rather than an error
from Dan Walsh.
* Man page fixes from Dan Walsh.
2009-02-18 21:54:32 +00:00
Daniel J Walsh
71c8918c91
* Mon Feb 9 2009 Dan Walsh <dwalsh@redhat.com> 2.0.61-8
...
- Add obsoletes to cause policycoreuils to update both python and non python version
2009-02-09 18:37:13 +00:00
Daniel J Walsh
15ec5ed084
* Tue Jan 21 2009 Dan Walsh <dwalsh@redhat.com> 2.0.61-4
...
- Fix Translations
2009-01-21 22:15:52 +00:00
Daniel J Walsh
93692e06c1
* Tue Jan 20 2009 Dan Walsh <dwalsh@redhat.com> 2.0.61-3
...
- Add Domains Page to system-config-selinux
- Add ability to create dbus confined applications to polgen
2009-01-20 14:58:13 +00:00
Daniel J Walsh
9f9bcaaa18
* Wed Dec 10 2008 Dan Walsh <dwalsh@redhat.com> 2.0.60-5
...
- Fix Japanese translations
2008-12-10 14:19:50 +00:00
Daniel J Walsh
6142b407fc
* Wed Oct 29 2008 Dan Walsh <dwalsh@redhat.com> 2.0.57-9
...
- Make GUI use translations
2008-10-29 17:02:31 +00:00
Daniel J Walsh
1b0693a203
* Mon Oct 20 2008 Dan Walsh <dwalsh@redhat.com> 2.0.57-4
...
- Fix system-config-selinux booleanspage throwing and exception
- Update po files
2008-10-20 19:53:19 +00:00
Daniel J Walsh
9bb9beca12
* Wed Oct 1 2008 Dan Walsh <dwalsh@redhat.com> 2.0.57-1
...
- Update to upstream
* Update po files from Dan Walsh.
2008-10-06 19:05:59 +00:00
Daniel J Walsh
2cfc77b157
* Fri Sep 12 2008 Dan Walsh <dwalsh@redhat.com> 2.0.56-1
...
- Fix semanage help display
- Update to upstream
* fixfiles will now remove all files in /tmp and will check for
unlabeled_t in /tmp and /var/tmp from Dan Walsh.
* add glob support to restorecond from Dan Walsh.
* allow semanage to handle multi-line commands in a single transaction
from Dan Walsh.
2008-09-12 15:58:45 +00:00
Daniel J Walsh
5483ca1ccd
* Tue Sep 9 2008 Dan Walsh <dwalsh@redhat.com> 2.0.55-6
...
- Fix spelling mistake
2008-09-09 16:18:36 +00:00
Daniel J Walsh
2a4d967daa
* Thu Aug 28 2008 Dan Walsh <dwalsh@redhat.com> 2.0.55-1
...
- Update to upstream
* Merged semanage node support from Christian Kuester.
2008-08-29 19:05:21 +00:00
Daniel J Walsh
1e4d97ba6c
* Tue Jul 29 2008 Dan Walsh <dwalsh@redhat.com> 2.0.52-6
...
- Fix boolean handling
- Upgrade to latest sepolgen
- Update po patch
2008-07-29 13:30:54 +00:00
Daniel J Walsh
b54c5a833b
* Tue Jul 8 2008 Dan Walsh <dwalsh@redhat.com> 2.0.52-3
...
- Fix indent problems in seobject
2008-07-08 12:58:55 +00:00
Daniel J Walsh
adf7360bca
* Mon Jun 30 2008 Dan Walsh <dwalsh@redhat.com> 2.0.50-1
...
- Update to upstream
* Fix audit2allow generation of role-type rules from Karl MacMillan.
2008-06-30 20:51:23 +00:00
Daniel J Walsh
d21474fea3
* Mon Jun 30 2008 Dan Walsh <dwalsh@redhat.com> 2.0.50-1
...
- Update to upstream
* Fix audit2allow generation of role-type rules from Karl MacMillan.
2008-06-30 15:52:24 +00:00
Daniel J Walsh
d0f20a4df5
* Tue Jun 24 2008 Dan Walsh <dwalsh@redhat.com> 2.0.49-10
...
- Fix spelling of enforcement
2008-06-27 11:03:38 +00:00
Daniel J Walsh
3623aa968e
*** empty log message ***
2008-05-12 18:11:41 +00:00
Daniel J Walsh
2219648009
*** empty log message ***
2008-05-07 11:38:31 +00:00
Daniel J Walsh
feaf320062
* Mon Jan 21 2008 Dan Walsh <dwalsh@redhat.com> 2.0.35-3
...
- Allow files with spaces to be used by setfiles
2008-01-21 21:04:52 +00:00
Daniel J Walsh
34a3b99b21
* Fri Jan 11 2008 Dan Walsh <dwalsh@redhat.com> 2.0.35-1
...
- Update to upstream
* Merged support for non-interactive newrole command invocation from Tim Reed.
2008-01-11 18:33:07 +00:00
Daniel J Walsh
ccbc11e287
* Mon Oct 15 2007 Dan Walsh <dwalsh@redhat.com> 2.0.31-1
...
- Remove no.po
- Update to upstream
* Fix semodule option handling from Dan Walsh.
* Add deleteall support for ports and fcontexts in semanage from Dan Walsh.
2007-10-15 18:09:34 +00:00
Daniel J Walsh
dc35f1b2f5
* Tue Oct 2 2007 Dan Walsh <dwalsh@redhat.com> 2.0.27-6
...
- Update translations
2007-10-03 02:45:18 +00:00
Daniel J Walsh
d1bf9de62b
* Mon Sep 24 2007 Dan Walsh <dwalsh@redhat.com> 2.0.26-2
...
- Fixed spelling mistakes in booleans defs
- Update po
2007-09-24 17:45:50 +00:00
Daniel J Walsh
1f2b67a04d
* Mon Sep 24 2007 Dan Walsh <dwalsh@redhat.com> 2.0.26-2
...
- Fixed spelling mistakes in booleans defs
- Update po
2007-09-24 16:22:03 +00:00
Daniel J Walsh
4c20f47670
* Mon Jun 4 2007 Dan Walsh <dwalsh@redhat.com> 2.0.19-3
...
- Fix french translation to not crash system-config-selinux
2007-06-04 14:58:22 +00:00