policycoreutils

Author	SHA1	Message	Date
Dan Walsh	de46aea469	Do not drop capability bounding set in seunshare, this allows sandbox to run setuid apps. Cleanup policy generation template Pass dpi settings to sandbox	2011-06-13 13:46:07 -04:00
Dan Walsh	fe90fcfea9	Clean up some of the templates for sepolgen	2011-04-29 12:11:09 -04:00
Dan Walsh	4cd6edc808	Change fixfiles restore to delete unlabeled sockets in /tmp	2011-04-18 13:18:42 -04:00
Dan Walsh	16246ac8b2	Change fixfiles restore to delete unlabeled sockets in /tmp	2011-04-18 12:48:35 -04:00
Dan Walsh	55fb6920ca	Add Elia Pinto patches to allow user to specify directories to ignore	2011-04-11 14:34:01 -04:00
Dan Walsh	78134e652a	rsynccmd should run outside of execcon	2011-03-29 13:38:42 -04:00
Dan Walsh	ed4c843b48	Fix semange node handling of ipv6 addresses	2011-03-24 16:40:45 -04:00
Dan Walsh	6d8189f150	Fix sepolgen-ifgen call, add -p option	2011-03-23 17:55:22 -04:00
Dan Walsh	4189d94570	Fix sepolgen-ifgen call	2011-03-23 09:52:42 -04:00
Dan Walsh	f7c4958dbf	Fix rsync command to work if the directory is old. Fix all tests	2011-03-18 17:49:10 -04:00
Dan Walsh	c06fc4b8dd	Fix sepolgen to generate network polcy using generic_if and genric_node versus all_if and all_node	2011-03-16 17:03:47 -04:00
Dan Walsh	fd42cdb339	Return to original seunshare man page	2011-03-16 09:36:26 -04:00
Dan Walsh	9f8f4e973f	change default location of HOMEDIR in sandbox to /tmp/.sandbox_home_* This will allow default sandboxes to work on NFS homedirs without allowing access to homedir data	2011-03-14 16:23:10 -04:00
Dan Walsh	65350da6d3	Change sepolgen-ifgen to search all available policy files Exit in restorecond if it can not find a UID in the passwd database	2011-03-11 16:54:41 -05:00
Dan Walsh	b6d72dd04b	Fix portspage in system-config-selinux to not crash More fixes for seunshare from Tomas Hoger	2011-03-09 16:16:13 -05:00
Dan Walsh	312470de44	put back in old handling of -T in sandbox command Put back setsid in seunshare Fix rsync to maintain times	2011-03-08 18:02:10 -05:00
Dan Walsh	93a6f1fc9d	Use rewritten seunshare from thoger	2011-03-08 16:51:35 -05:00
Dan Walsh	2ab6e22253	Require python-IPy for policycoreutils-python package Fixes for sepologen Usage statement needs -n name Names with _ are being prevented dbus apps should get _chat interface	2011-03-07 17:03:02 -05:00
Dan Walsh	513ebc6132	Fix error message in seunshare, check for tmpdir existance before unlink.	2011-03-03 17:06:51 -05:00
Dan Walsh	4d63979d6d	Fix error message in seunshare, check for tmpdir existance before unlink.	2011-03-03 15:51:42 -05:00
Dan Walsh	aae6082678	Rewrite seunshare to make sure /tmp is mounted stickybit owned by root Only allow names in polgengui that contain letters and numbers Fix up node handling in semanage command Update translations	2011-03-03 13:46:30 -05:00
Dennis Gilmore	b855a50ea5	- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild	2011-02-09 09:39:07 -06:00
Dan Walsh	a710a4e711	- Fix sandbox policy creation with udp connect ports	2011-02-03 17:05:41 -05:00
Dan Walsh	433953b033	- Cleaup selinux-polgengui to be a little more modern, fix comments and use selected name - Cleanup chcat man page	2011-02-03 16:15:43 -05:00
Dan Walsh	331e9ad06d	- Report full errors on OSError on Sandbox	2011-02-02 13:34:22 -05:00
Dan Walsh	e764b2d2b6	- Fix newrole hanlding of pcap	2011-01-21 15:11:31 -05:00
Dan Walsh	971f278f98	- Have restorecond watch more directories in homedir	2011-01-19 16:45:53 -05:00
Dan Walsh	b49eb13451	- Add sandbox to sepolgen	2011-01-14 16:39:55 -05:00
Dan Walsh	01e471247b	- Add sandbox to sepolgen	2011-01-14 16:37:43 -05:00
Dan Walsh	afa2535b24	- Add sandbox to sepolgen	2011-01-14 14:39:26 -05:00
Dan Walsh	12eb5b45f4	- Fix proper handling of getopt errors - Do not allow modules names to contain spaces	2011-01-10 14:39:21 -05:00
Dan Walsh	c76dc0c642	- Polgengui raises the wrong type of exception. #471078 - Change semanage to not allow it to semanage module -D - Change setsebool to suggest run as root on failure	2011-01-06 14:38:19 -05:00
Dan Walsh	448a84b06a	- Polgengui raises the wrong type of exception. #471078 - Change semanage to not allow it to semanage module -D	2011-01-04 17:23:27 -05:00
Dan Walsh	18119ffd24	- Fix restorecond watching utmp file for people logging in our out	2010-12-22 14:38:46 -05:00
Dan Walsh	b1a3235896	- Update to upstream	2010-12-21 16:20:42 -05:00
Dan Walsh	a548207cc4	- Change to allow sandbox to run on nfs homedirs, add start python script	2010-12-21 16:20:01 -05:00
Dan Walsh	8937a040d8	- Change to allow sandbox to run on nfs homedirs, add start python script	2010-12-15 16:47:38 -05:00
Dan Walsh	3108046cf7	- Move seunshare to sandbox package	2010-12-15 14:15:49 -05:00
Dan Walsh	6c80e8dc19	- Fix sandbox to show correct types in usage statement	2010-11-30 12:09:48 -05:00
Dan Walsh	8c1d9b0f48	- Stop fixfiles from complaining about missing dirs	2010-11-29 10:14:39 -05:00
Dan Walsh	63fda8aa74	- Update to upstream - List types available for sandbox in usage statement	2010-11-24 13:44:58 -05:00
Dan Walsh	f0e85a70d6	- Update to upstream - List types available for sandbox in usage statement	2010-11-24 13:41:52 -05:00
Dan Walsh	af19df0f00	- Don't report error on load_policy when system is disabled.	2010-11-22 13:50:29 -05:00
Dan Walsh	b9b7f4161c	- Fix up problems pointed out by solar designer on dropping capabilities	2010-11-08 15:12:25 -05:00
Dan Walsh	d7e1c238f4	- Check if you have full privs and reset otherwise dont drop caps	2010-11-01 16:21:00 -04:00
Dan Walsh	cdcc4526b7	- Fix setools require line	2010-11-01 09:50:12 -04:00
Dan Walsh	622bb69d77	- Move /etc/pam.d/newrole in to polcicycoreutils-newrole - Additiona capability checking in sepolgen	2010-10-29 09:39:03 -04:00
Dan Walsh	9852e61813	- Remove setuid flag and replace with file capabilities - Fix sandbox handling of files with spaces in them	2010-10-25 17:25:34 -04:00
Jesse Keating	c9df11e933	- Rebuilt for gcc bug 634757	2010-09-29 15:05:42 -07:00
Dan Walsh	cccd96b8cf	- Move restorecond into its own subpackage	2010-09-23 16:23:05 -04:00

1 2 3 4 5 ...

819 Commits