Commit History

Author SHA1 Message Date
  Helmut Pozimski 82f3c528af add apticron policy module 9 years ago
  Helmut Pozimski e54a282860 add a fork of the logrotate policy and allow capability sys_ptrace 9 years ago
  Helmut Pozimski 7f8f621190 add several missing permissions to the ipsec policy module for strongswan 9 years ago
  Helmut Pozimski 148a9e44ff add fork of the mta policy module and extend it to be able to write to cron temporary files 9 years ago
  Helmut Pozimski 56cf3c1593 add selinux policy for my custom dnsping IP update script 9 years ago
  Helmut Pozimski ae7999161a allow apache to write content directories and atop to get the attributes of user directories 9 years ago
  Helmut Pozimski bb584b8ca2 allow postdrpo to connect to postfix sockets 9 years ago
  Helmut Pozimski 64324c83c3 add for of the iptables policy module and allow access to urandom 9 years ago
  Helmut Pozimski 8c8f11267d allow apache to write to content directories and read virtual memory settings 9 years ago
  Helmut Pozimski 8bfaac042d add missing permissions for lvm, locales and dev to the atop module 9 years ago
  Helmut Pozimski af4827644c allow udev_t to read the sshd pid file as needed by the script in if-up.d 9 years ago
  Helmut Pozimski e6467d2848 add postfix policy module and allow communication with udev 9 years ago
  Helmut Pozimski 7777c51fe3 add ssh policy module and allow communication with udev 9 years ago
  Helmut Pozimski 13d07c1481 allow ipsec_mgmnt_t to signul ipsec_t 9 years ago
  Helmut Pozimski 184b62e58f allow the xonotic server access to localtime 9 years ago
  Helmut Pozimski 37d6fec029 allow iptables to read log files, seems to be required for sshguard operation 9 years ago
  Helmut Pozimski ac6d2aeff2 strip sshguard of capabilities, allow domtrans to iptables instead and add remaining permissions 9 years ago
  Helmut Pozimski 2c711e8b6a correct syntax errors in the sshguard policy module 9 years ago
  Helmut Pozimski 10acf58b96 add a initital skeleton implementation of the sshguard policy module 9 years ago
  Helmut Pozimski 0388bd041a add a fork of the bind policy to allow it to connect to udev via udp 9 years ago
  Helmut Pozimski 9c9e4b1e02 correct the type name for rndc to ndc_t, also added interface connect_udev_udp_socket in the last connect to allow daemons to communicate with udev 9 years ago
  Helmut Pozimski ffa99ee15f add a fork of the udev module, allow udev to transistion to rndc_t and manage postfix to satisfy script dependencies in /etc/network/if-up.d 9 years ago
  Helmut Pozimski f78e2c5b9a add one missing permission to the atop policy module 9 years ago
  Helmut Pozimski 8db61a58d7 add one missing permission to the apache policy module 9 years ago
  Helmut Pozimski 4af5a03991 add the missing domain transition for fail2ban_var_run_t and correct the permissions for fail2ban_client_t 9 years ago
  Helmut Pozimski a52dc2cfa5 add the fail2ban module to modify it 9 years ago
  Helmut Pozimski ec1428fd7a add policy for a custom installed xonotic game server 9 years ago
  Helmut Pozimski 9477333d16 extend atop policy to cover all necessary permissions found up to now 9 years ago
  Helmut Pozimski 5d9bd852ed add an initial implemenation of a minimal atop policy 9 years ago
  Helmut Pozimski ac160709f3 add remaining domain transistions to make strongswan work 9 years ago