* [refpolicy] services_snort.patch
@ 2010-08-26 22:21 Daniel J Walsh
2010-09-15 13:24 ` Christopher J. PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2010-08-26 22:21 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F14/services_snort.patch
Reads kernel network state
uses usbmon device
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkx26QMACgkQrlYvE4MpobNWAgCg6FKvaYKBkQ6p4J2HC+pxpKsH
JSgAoM4S1wdDxDwzw0S68Ni0jqXrmpQ8
=08UV
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
2010-08-26 22:21 [refpolicy] services_snort.patch Daniel J Walsh
@ 2010-09-15 13:24 ` Christopher J. PeBenito
0 siblings, 0 replies; 9+ messages in thread
From: Christopher J. PeBenito @ 2010-09-15 13:24 UTC (permalink / raw)
To: refpolicy
On 08/26/10 18:21, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F14/services_snort.patch
>
> Reads kernel network state
>
> uses usbmon device
Merged.
--
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
@ 2010-02-23 20:56 Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2010-02-23 20:56 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F13/services_snort.patch
snort creates generic sockets
We can dontaudit read of system state
rearrage kernel calls and allow snort to request the kernel load a module.
uses usbmod and genrice usb devices.
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
2009-06-09 1:09 Daniel J Walsh
@ 2009-07-27 20:04 ` Chris PeBenito
0 siblings, 0 replies; 9+ messages in thread
From: Chris PeBenito @ 2009-07-27 20:04 UTC (permalink / raw)
To: refpolicy
On Mon, 2009-06-08 at 21:09 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_snort.patch
>
> Interface with prelude.
Merged.
--
Chris PeBenito
<pebenito@gentoo.org>
Developer,
Hardened Gentoo Linux
Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243
Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
@ 2009-06-09 1:09 Daniel J Walsh
2009-07-27 20:04 ` Chris PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2009-06-09 1:09 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_snort.patch
Interface with prelude.
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
@ 2009-03-05 17:05 Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2009-03-05 17:05 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F11/services_snort.patch
snort uses prelude port
reads kernel sysctl
Prelude fixes.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkmwBj8ACgkQrlYvE4MpobP29gCeMuz61PYacDRniei52F4KIcHq
kyoAoK/pzq7EH58fK1dqQaGmV0sR1b5C
=QEvj
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
2008-10-09 18:09 ` Christopher J. PeBenito
@ 2008-10-10 20:40 ` Daniel J Walsh
0 siblings, 0 replies; 9+ messages in thread
From: Daniel J Walsh @ 2008-10-10 20:40 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Complete kerberos patch and several small domains that use kerberos keytabs.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkjvvaEACgkQrlYvE4MpobMi9QCglHrjtdZ6lWuBUnxMztGQ9NuI
fvEAoM5zM+khcn65LXKylp/YubfJXBeM
=GGO7
-----END PGP SIGNATURE-----
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: services_kerberos.patch
Url: http://oss.tresys.com/pipermail/refpolicy/attachments/20081010/a66c95c6/attachment-0001.pl
-------------- next part --------------
A non-text attachment was scrubbed...
Name: services_kerberos.patch.sig
Type: application/octet-stream
Size: 72 bytes
Desc: not available
Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20081010/a66c95c6/attachment-0001.obj
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
2008-09-24 19:59 Daniel J Walsh
@ 2008-10-09 18:09 ` Christopher J. PeBenito
2008-10-10 20:40 ` Daniel J Walsh
0 siblings, 1 reply; 9+ messages in thread
From: Christopher J. PeBenito @ 2008-10-09 18:09 UTC (permalink / raw)
To: refpolicy
On Wed, 2008-09-24 at 15:59 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_snort.patch
>
> New path for snort
>
> snort now uses /var/run/snort
>
> Add initrc script support
>
> allow admin to start/stop service
>
> Admin needs admin_pattern on all file types
>
> snort uses the netlinkg_firewall_socket
>
> connects to the prelude port
>
> reads random devices
>
> reads utmp file
>
> resolves hostnames
>
> playes with prelude
Merged, except for the prelude bits. It also sounds like that DNS
resolve should go in the prelude optional too.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 9+ messages in thread
* [refpolicy] services_snort.patch
@ 2008-09-24 19:59 Daniel J Walsh
2008-10-09 18:09 ` Christopher J. PeBenito
0 siblings, 1 reply; 9+ messages in thread
From: Daniel J Walsh @ 2008-09-24 19:59 UTC (permalink / raw)
To: refpolicy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
http://people.fedoraproject.org/~dwalsh/SELinux/F10/services_snort.patch
New path for snort
snort now uses /var/run/snort
Add initrc script support
allow admin to start/stop service
Admin needs admin_pattern on all file types
snort uses the netlinkg_firewall_socket
connects to the prelude port
reads random devices
reads utmp file
resolves hostnames
playes with prelude
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkjanCcACgkQrlYvE4MpobMP3QCgo2zQdPjF9tnFxRDY5UDi+GrM
YlYAniNBcZ8xRMFmtWcLHUqskeFKN8ng
=W9eu
-----END PGP SIGNATURE-----
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2010-09-15 13:24 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-08-26 22:21 [refpolicy] services_snort.patch Daniel J Walsh
2010-09-15 13:24 ` Christopher J. PeBenito
-- strict thread matches above, loose matches on Subject: below --
2010-02-23 20:56 Daniel J Walsh
2009-06-09 1:09 Daniel J Walsh
2009-07-27 20:04 ` Chris PeBenito
2009-03-05 17:05 Daniel J Walsh
2008-09-24 19:59 Daniel J Walsh
2008-10-09 18:09 ` Christopher J. PeBenito
2008-10-10 20:40 ` Daniel J Walsh
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.