 Helmut Pozimski
|
64324c83c3
add for of the iptables policy module and allow access to urandom
|
9 years ago |
 Helmut Pozimski
|
8c8f11267d
allow apache to write to content directories and read virtual memory settings
|
9 years ago |
|
Helmut Pozimski
|
8bfaac042d
add missing permissions for lvm, locales and dev to the atop module
|
9 years ago |
|
Helmut Pozimski
|
af4827644c
allow udev_t to read the sshd pid file as needed by the script in if-up.d
|
9 years ago |
|
Helmut Pozimski
|
e6467d2848
add postfix policy module and allow communication with udev
|
9 years ago |
|
Helmut Pozimski
|
7777c51fe3
add ssh policy module and allow communication with udev
|
9 years ago |
|
Helmut Pozimski
|
13d07c1481
allow ipsec_mgmnt_t to signul ipsec_t
|
9 years ago |
|
Helmut Pozimski
|
184b62e58f
allow the xonotic server access to localtime
|
9 years ago |
|
Helmut Pozimski
|
37d6fec029
allow iptables to read log files, seems to be required for sshguard operation
|
9 years ago |
|
Helmut Pozimski
|
ac6d2aeff2
strip sshguard of capabilities, allow domtrans to iptables instead and add remaining permissions
|
9 years ago |
|
Helmut Pozimski
|
2c711e8b6a
correct syntax errors in the sshguard policy module
|
9 years ago |
|
Helmut Pozimski
|
10acf58b96
add a initital skeleton implementation of the sshguard policy module
|
9 years ago |
|
Helmut Pozimski
|
0388bd041a
add a fork of the bind policy to allow it to connect to udev via udp
|
9 years ago |
|
Helmut Pozimski
|
9c9e4b1e02
correct the type name for rndc to ndc_t, also added interface connect_udev_udp_socket in the last connect to allow daemons to communicate with udev
|
9 years ago |
|
Helmut Pozimski
|
ffa99ee15f
add a fork of the udev module, allow udev to transistion to rndc_t and manage postfix to satisfy script dependencies in /etc/network/if-up.d
|
9 years ago |
|
Helmut Pozimski
|
f78e2c5b9a
add one missing permission to the atop policy module
|
9 years ago |
|
Helmut Pozimski
|
8db61a58d7
add one missing permission to the apache policy module
|
9 years ago |
|
Helmut Pozimski
|
4af5a03991
add the missing domain transition for fail2ban_var_run_t and correct the permissions for fail2ban_client_t
|
9 years ago |
|
Helmut Pozimski
|
a52dc2cfa5
add the fail2ban module to modify it
|
9 years ago |
|
Helmut Pozimski
|
ec1428fd7a
add policy for a custom installed xonotic game server
|
9 years ago |
|
Helmut Pozimski
|
9477333d16
extend atop policy to cover all necessary permissions found up to now
|
9 years ago |
|
Helmut Pozimski
|
5d9bd852ed
add an initial implemenation of a minimal atop policy
|
9 years ago |
|
Helmut Pozimski
|
ac160709f3
add remaining domain transistions to make strongswan work
|
9 years ago |
|
Helmut Pozimski
|
6550b0eaa3
add a type for charon based on the existing racoon type
|
9 years ago |
|
Helmut Pozimski
|
4762bce146
add a copy of the ipsec module of the reference policy
|
9 years ago |
|
Helmut Pozimski
|
8c06f39c0e
expand socket permissions and allow access to sysfs for murmur
|
9 years ago |
|
Helmut Pozimski
|
bec1ccbf88
add initial implementation of a murmur selinux policy
|
9 years ago |
|
Helmut Pozimski
|
1dc2a5430a
Initial commit, add somewhat reduced apache policy
|
9 years ago |
