* [refpolicy] system_mount.patch
@ 2010-02-23 22:17 Daniel J Walsh
2010-03-19 17:30 ` Christopher J. PeBenito
0 siblings, 1 reply; 5+ messages in thread
From: Daniel J Walsh @ 2010-02-23 22:17 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F13/system_mount.patch
File context for fusermount so I can stop xguest from using mount
New file context for mount
Dontaudit broken leaks
Lots of new access for mount.
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] system_mount.patch
2010-02-23 22:17 [refpolicy] system_mount.patch Daniel J Walsh
@ 2010-03-19 17:30 ` Christopher J. PeBenito
0 siblings, 0 replies; 5+ messages in thread
From: Christopher J. PeBenito @ 2010-03-19 17:30 UTC (permalink / raw)
To: refpolicy
On Tue, 2010-02-23 at 17:17 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F13/system_mount.patch
>
> File context for fusermount so I can stop xguest from using mount
>
> New file context for mount
>
> Dontaudit broken leaks
>
> Lots of new access for mount.
How much of this new access is due to fusermount? Dbus usage, exec'ing
things unrelated to mount like ssh, transitioning to rpcd? Sounds like
fusermount might need its own type after all.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] system_mount.patch
@ 2010-08-26 23:42 Daniel J Walsh
0 siblings, 0 replies; 5+ messages in thread
From: Daniel J Walsh @ 2010-08-26 23:42 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F14/system_mount.patch
Lots of fixes for mount
Add policy for fusermount
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkx2/AIACgkQrlYvE4MpobMaQACgqlQljnqjPZfziGoDvKCQ24qh
JJcAoOlgKdcntWfMDOhzgoWj0QIRfvht
=z05p
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] system_mount.patch
@ 2009-11-12 22:14 Daniel J Walsh
0 siblings, 0 replies; 5+ messages in thread
From: Daniel J Walsh @ 2009-11-12 22:14 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F12/system_mount.patch
Latest labels for mount.
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] system_mount.patch
@ 2009-03-24 14:13 Daniel J Walsh
0 siblings, 0 replies; 5+ messages in thread
From: Daniel J Walsh @ 2009-03-24 14:13 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F11/system_mount.patch
More file context for mount
Additional access required for mount.davfs2
Added mount_var_run_t
mount interacs with kernel
mount.tmpfs now needs to write to tmpfs_t file system
mount --context requires us to relabel to any file context
mount uses dbus
mount permisions to use ntfs
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2010-08-26 23:42 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-02-23 22:17 [refpolicy] system_mount.patch Daniel J Walsh
2010-03-19 17:30 ` Christopher J. PeBenito
-- strict thread matches above, loose matches on Subject: below --
2010-08-26 23:42 Daniel J Walsh
2009-11-12 22:14 Daniel J Walsh
2009-03-24 14:13 Daniel J Walsh
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.