refpolicy 2:0.2.20100524-12ubuntu1 source package in Ubuntu
Changelog
refpolicy (2:0.2.20100524-12ubuntu1) precise; urgency=low
* Merge from debian testing. Remaining changes:
- debian/control: drop "selinux" conflict (Closes: #576598)
refpolicy (2:0.2.20100524-12) unstable; urgency=low
* Allow perdition to bind to sieve port, read /dev/urandom, and capabilities
chown and fowner.
* Allow nrpe_t to manage nagios_var_run_t files.
* Change the in_unconfined_r() interface so that postfix_postqueue_t can
read and write unconfined_t fifos.
* Allow quota_t to load kernel modules.
refpolicy (2:0.2.20100524-11) unstable; urgency=low
* Allow snmpd to setuid and setgid.
* Allow nagios services to connect to mysql servers via tcp and read /etc
files for mysql.
* Allow nagios_mail_plugin_t to read usr files.
* Allow postfix_postqueue_t to use a fd from nagios_mail_plugin_t.
* Allow crond_t the sys_resource capability to set resource limits for
children.
* Allow user_t to manage httpd_user_content_t, also allow httpd_t
the same access to httpd_user_content_t sym-links as to files.
* Allow gpg_agent_t to create sock_files under ~/.gnupg
Allow gpg_pinentry_t to read var_lib_t files for fonts.conf
* Allow perdition to authenticate with mysql, read directories of type
perdition_etc_t, connect to the pop ports
* Allow nagios_checkdisk_plugin_t to getattr all mountpoint dirs, so it
can check the root directory of a filesystem.
-- Angel Abad <email address hidden> Sun, 16 Oct 2011 16:06:08 +0200
Upload details
- Uploaded by:
- Angel Abad
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- admin
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| refpolicy_0.2.20100524.orig.tar.gz | 763.2 KiB | de52e2dd7431e04b9061a246431b6f6aeac2b91af5553b2cef22c8cf853f1700 |
| refpolicy_0.2.20100524-12ubuntu1.diff.gz | 126.3 KiB | 17a8c0a3c2778af30babc53bb90655e8483b240ef9ed8d8f0e61497c98348a04 |
| refpolicy_0.2.20100524-12ubuntu1.dsc | 1.6 KiB | 9537c6b3a5cc3349bc758f1c984092434d6bdfd3d00abdce9e5417fb4d92fece |
Available diffs
Binary packages built by this source
- selinux-policy-default: Strict and Targeted variants of the SELinux policy
This is the reference policy for SE Linux. In the default configuration it
will provide the functionality previously known as the "targeted" policy. If
the module "unconfined" is removed then it provides the functionality
previously known as the "strict" policy.
.
This uses the MMCS system of categories.
- selinux-policy-dev: Headers from the SELinux reference policy for building modules
The SELinux Reference Policy (refpolicy) is a complete SELinux
policy, as an alternative to the existing strict and targeted
policies available from http://selinux. sf.net. The goal is to have
this policy as the system policy, be and used as the basis for
creating other policies. Refpolicy is based on the current strict and
targeted policies, but aims to accomplish many additional
goals:
+ Strong Modularity
+ Clearly stated security Goals
+ Documentation
+ Development Tool Support
+ Forward Looking
+ Configurability
+ Flexible Base Policy
+ Application Policy Variations
+ Multi-Level Security
.
This package provides header files for building your own SELinux
policy packages compatible with official policy packages.
- selinux-policy-doc: Documentation for the SELinux reference policy
The SELinux Reference Policy (refpolicy) is a complete SELinux
policy, as an alternative to the existing strict and targeted
policies available from http://selinux. sf.net. The goal is to have
this policy as the system policy, be and used as the basis for
creating other policies. Refpolicy is based on the current strict and
targeted policies, but aims to accomplish many additional
goals:
+ Strong Modularity
+ Clearly stated security Goals
+ Documentation
+ Development Tool Support
+ Forward Looking
+ Configurability
+ Flexible Base Policy
+ Application Policy Variations
+ Multi-Level Security
.
This package contains the documentation for the reference policy.
- selinux-policy-mls: MLS (Multi Level Security) variant of the SELinux policy
This is the reference policy for SE Linux built with MLS support. It allows
giving data labels such as "Top Secret" and preventing such data from leaking
to processes or files with lower classification.
.
It was developed for Common Criteria LSPP certification for RHEL. It will
probably never be well supported in Debian and is only recommended for
students who want to learn about the security features used by the military.
- selinux-policy-src: Source of the SELinux reference policy for customization
The SELinux Reference Policy (refpolicy) is a complete SELinux
policy, as an alternative to the existing strict and targeted
policies available from http://selinux. sf.net. The goal is to have
this policy as the system policy, be and used as the basis for
creating other policies. Refpolicy is based on the current strict and
targeted policies, but aims to accomplish many additional
goals:
+ Strong Modularity
+ Clearly stated security Goals
+ Documentation
+ Development Tool Support
+ Forward Looking
+ Configurability
+ Flexible Base Policy
+ Application Policy Variations
+ Multi-Level Security
.
This is the source of the policy, provided so that local variations of
SELinux policy may be created.
