smartmon needs to be able to write to physical devices.

smartmon needs to be able to write to physical devices.

[Daniel J Walsh]

[-- Attachment #1: Type: text/plain, Size: 50 bytes --]

Needs to write to SystemLow, for logs, tmp files.

[-- Attachment #2: nsaserefpolicy_policy_modules_services_smartmon.patch --]
[-- Type: text/x-patch, Size: 393 bytes --]

--- nsaserefpolicy/policy/modules/services/smartmon.te	2007-01-02 12:57:43.000000000 -0500
+++ serefpolicy-2.5.4/policy/modules/services/smartmon.te	2007-02-19 16:01:52.000000000 -0500
@@ -60,6 +60,7 @@
 fs_search_auto_mountpoints(fsdaemon_t)
 
 mls_file_read_up(fsdaemon_t)
+mls_file_write_down(fsdaemon_t)
 
 storage_raw_read_fixed_disk(fsdaemon_t)
 storage_raw_write_fixed_disk(fsdaemon_t)

Re: smartmon needs to be able to write to physical devices.

[Christopher J. PeBenito]

On Tue, 2007-02-20 at 12:20 -0500, Daniel J Walsh wrote:
> Needs to write to SystemLow, for logs, tmp files.

I've been thinking about this for a while.  Shouldn't this instead be
running at system high since its purpose is to monitor the hard disks?
It's temp files and pid files should also be at system high, and it
doesn't have its own logs, it uses syslog.

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.