| 123456789101112131415161718192021 |
- # Add programs here which should not be confined by SELinux
- # e.g.:
- # /usr/local/bin/appsrv -- gen_context(system_u:object_r:unconfined_exec_t,s0)
- # For the time being until someone writes a sane policy, we need initrc to transition to unconfined_t
- /usr/bin/valgrind -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- /usr/bin/vncserver -- gen_context(system_u:object_r:unconfined_exec_t,s0)
- /usr/lib/ia32el/ia32x_loader -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- /usr/lib/openoffice\.org.*/program/.+\.bin -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- /usr/local/RealPlayer/realplay\.bin -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- ifdef(`distro_debian',`
- /usr/bin/gcj-dbtool-4\.1 -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- /usr/bin/gij-4\.1 -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- /usr/lib/openoffice/program/soffice\.bin -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- ')
- ifdef(`distro_gentoo',`
- /usr/lib/openoffice/program/[^/]+\.bin -- gen_context(system_u:object_r:unconfined_execmem_exec_t,s0)
- ')
|
