[refpolicy] system_udev.patch

Christopher J. PeBenito cpebenito at tresys.com
Thu Mar 19 13:21:38 CDT 2009


On Mon, 2009-03-02 at 17:36 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/system_udev.patch
> 
> Add file context for /var/run/PackageKit/udev
> 
> Switch interfaces to use udev_tbl_t
> 
> udev can exec helper apps
> 
> Searches dbugfs
> 
> Reads software raid, sends audit messages
> 
> Reads also lib
> 
> Executes the clock
> 
> Reads devicekit pid file.
> 
> Executes lvm commands
> 
> Search rm log files
> 
> We run it unconfined on Fedora.

Merged.

-- 
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150



More information about the refpolicy mailing list