Re: apps_uml changes

On Wed, 2007-05-30 at 11:40 -0400, dwalsh@redhat.com wrote:
> Remove TODO

Are you sure that none of these rules are needed?

> --- nsaserefpolicy/policy/modules/apps/uml.if 2007-05-29 14:10:48.000000000 -0400
> +++ serefpolicy-3.0.1/policy/modules/apps/uml.if 2007-05-30 09:25:53.000000000 -0400
> @@ -193,33 +193,6 @@
> nis_use_ypbind($1_uml_t)
> ')
>
> - ifdef(`TODO',`
> - # for X
> - optional_policy(`
> - ifelse($1, sysadm,`
> - ',`
> - optional_policy(`
> - allow $1_uml_t xdm_xserver_tmp_t:dir search;
> - ')
> - allow $1_uml_t $1_xserver_tmp_t:sock_file write;
> - allow $1_uml_t $1_xserver_t:unix_stream_socket connectto;
> - ')
> - ')
> -
> - optional_policy(`
> - # for uml_net
> - domain_auto_trans($1_uml_t, uml_net_exec_t, uml_net_t)
> - allow uml_net_t $1_uml_t:unix_stream_socket { read write };
> - allow uml_net_t $1_uml_t:unix_dgram_socket { read write };
> - dontaudit uml_net_t privfd:fd use;
> - can_access_pty(uml_net_t, $1_uml)
> - dontaudit uml_net_t $1_uml_rw_t:dir { getattr search };
> - ')
> - #TODO
> - optional_policy(`
> - allow $1_uml_t $1_xauth_home_t:file { getattr read };
> - ')
> - ')
> ')
>
> ########################################
-- Chris PeBenito Tresys Technology, LLC (410) 290-1411 x150 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.

• This message: [ Message body ]
• Next message: Christopher J. PeBenito: "Re: fix openvpn log/run file context"
• Previous message: Christopher J. PeBenito: "Re: setroubleshoot sends signull to itself"
• Next in thread: Daniel J Walsh: "Re: apps_uml changes"
• Reply: Daniel J Walsh: "Re: apps_uml changes"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]