SOURCES: policy-apache.patch, policy-login.patch, policy-postfix.p...

qboosh qboosh at pld-linux.org
Fri Sep 23 11:26:07 CEST 2005 

Author: qboosh                       Date: Fri Sep 23 09:26:07 2005 GMT
Module: SOURCES                       Tag: HEAD
---- Log message:
- updated for 1.26

---- Files affected:
SOURCES:
   policy-apache.patch (1.4 -> 1.5) , policy-login.patch (1.1 -> 1.2) , policy-postfix.patch (1.9 -> 1.10) 

---- Diffs:

================================================================
Index: SOURCES/policy-apache.patch
diff -u SOURCES/policy-apache.patch:1.4 SOURCES/policy-apache.patch:1.5
--- SOURCES/policy-apache.patch:1.4	Sat Jan  8 18:41:47 2005
+++ SOURCES/policy-apache.patch	Fri Sep 23 11:26:01 2005
@@ -1,6 +1,6 @@
---- policy-1.20/file_contexts/program/apache.fc.orig	2004-12-10 20:57:35.000000000 +0100
-+++ policy-1.20/file_contexts/program/apache.fc	2005-01-08 18:21:30.792381280 +0100
-@@ -8,6 +8,7 @@
+--- policy-1.26/file_contexts/program/apache.fc.orig	2005-07-18 22:13:38.000000000 +0200
++++ policy-1.26/file_contexts/program/apache.fc	2005-09-23 10:08:00.196995520 +0200
+@@ -9,6 +9,7 @@
  /var/cache/httpd(/.*)?		system_u:object_r:httpd_cache_t
  /etc/httpd		-d	system_u:object_r:httpd_config_t
  /etc/httpd/conf.*		system_u:object_r:httpd_config_t
@@ -8,16 +8,16 @@
  /etc/httpd/logs			system_u:object_r:httpd_log_t
  /etc/httpd/modules		system_u:object_r:httpd_modules_t
  /etc/apache(2)?(/.*)?		system_u:object_r:httpd_config_t
-@@ -15,7 +16,7 @@
+@@ -16,7 +17,7 @@
  /usr/lib(64)?/apache(/.*)?		system_u:object_r:httpd_modules_t
  /usr/lib(64)?/apache2/modules(/.*)?	system_u:object_r:httpd_modules_t
  /usr/lib(64)?/httpd(/.*)?		system_u:object_r:httpd_modules_t
--/usr/sbin/httpd		--	system_u:object_r:httpd_exec_t
+-/usr/sbin/httpd(\.worker)?	--	system_u:object_r:httpd_exec_t
 +/usr/sbin/httpd.*	--	system_u:object_r:httpd_exec_t
  /usr/sbin/apache(2)?	--	system_u:object_r:httpd_exec_t
  /usr/sbin/suexec	--	system_u:object_r:httpd_suexec_exec_t
  /usr/lib(64)?/cgi-bin/(nph-)?cgiwrap(d)? -- system_u:object_r:httpd_suexec_exec_t
-@@ -25,7 +26,7 @@
+@@ -26,7 +27,7 @@
  /var/log/cgiwrap\.log.*	--	system_u:object_r:httpd_log_t
  /var/cache/ssl.*\.sem	--	system_u:object_r:httpd_cache_t
  /var/cache/mod_ssl(/.*)?	system_u:object_r:httpd_cache_t

================================================================
Index: SOURCES/policy-login.patch
diff -u SOURCES/policy-login.patch:1.1 SOURCES/policy-login.patch:1.2
--- SOURCES/policy-login.patch:1.1	Thu Mar 11 12:19:20 2004
+++ SOURCES/policy-login.patch	Fri Sep 23 11:26:01 2005
@@ -1,11 +1,11 @@
---- policy-1.6/domains/program/login.te.orig	Tue Feb 17 19:36:50 2004
-+++ policy-1.6/domains/program/login.te	Tue Mar  2 15:30:27 2004
-@@ -93,7 +93,7 @@
+--- policy-1.26/domains/program/login.te.orig	2005-07-11 20:24:29.000000000 +0200
++++ policy-1.26/domains/program/login.te	2005-09-23 10:05:55.294983512 +0200
+@@ -111,7 +111,7 @@
  allow $1_login_t lastlog_t:file rw_file_perms;
  
  # Write to /var/log/btmp
--allow $1_login_t faillog_t:file { append read write };
-+allow $1_login_t faillog_t:file { append read write getattr };
+-allow $1_login_t faillog_t:file { lock append read write };
++allow $1_login_t faillog_t:file { lock append read write getattr };
  
  # Search for mail spool file.
  allow $1_login_t mail_spool_t:dir r_dir_perms;

================================================================
Index: SOURCES/policy-postfix.patch
diff -u SOURCES/policy-postfix.patch:1.9 SOURCES/policy-postfix.patch:1.10
--- SOURCES/policy-postfix.patch:1.9	Sat Jul  2 01:07:47 2005
+++ SOURCES/policy-postfix.patch	Fri Sep 23 11:26:01 2005
@@ -44,12 +44,12 @@
  /var/log/sendmail\.st		--	system_u:object_r:sendmail_log_t
  /var/log/mail(/.*)?			system_u:object_r:sendmail_log_t
  /var/run/sendmail\.pid		--	system_u:object_r:sendmail_var_run_t
---- policy-1.24/domains/program/unused/mta.te.orig	2005-05-23 21:20:02.000000000 +0200
-+++ policy-1.24/domains/program/unused/mta.te	2005-07-02 00:40:00.294528232 +0200
+--- policy-1.26/domains/program/unused/mta.te.orig	2005-08-10 08:48:42.000000000 +0200
++++ policy-1.26/domains/program/unused/mta.te	2005-09-23 10:04:23.130994568 +0200
 @@ -72,3 +72,6 @@
  
  allow system_mail_t etc_runtime_t:file { getattr read };
- allow system_mail_t { random_device_t urandom_device_t }:chr_file read;
+ allow system_mail_t { random_device_t urandom_device_t }:chr_file { getattr read };
 +
 +# etc_mail_t is the type of /etc/mail.
 +type etc_mail_t, file_type, sysadmfile, usercanread;
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/SOURCES/policy-apache.patch?r1=1.4&r2=1.5&f=u
    http://cvs.pld-linux.org/SOURCES/policy-login.patch?r1=1.1&r2=1.2&f=u
    http://cvs.pld-linux.org/SOURCES/policy-postfix.patch?r1=1.9&r2=1.10&f=u

More information about the pld-cvs-commit mailing list