[russell@coker.com.au: Re: Policy patches]

Luke Kenneth Casson Leighton lkcl at lkcl.net
Fri Sep 17 09:22:03 PDT 2004


thought you should know: something odd going on there, with
fstab-sync accessing home directories unnecessarily.

[btw dontaudit means "it's banned but we don't want it in the logs either".]

----- Forwarded message from Russell Coker <russell at coker.com.au> -----

Envelope-to: lkcl at localhost
Delivery-date: Fri, 17 Sep 2004 17:14:53 +0100
X-Sieve: CMU Sieve 2.2
From: Russell Coker <russell at coker.com.au>
Reply-To: russell at coker.com.au
To: Daniel J Walsh <dwalsh at redhat.com>
Subject: Re: Policy patches
Cc: jwcart2 at epoch.ncsc.mil, SE Linux <selinux at tycho.nsa.gov>
X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at sws.net.au
X-Mailing-List: selinux-tycho.nsa.gov
X-hands-com-MailScanner: Found to be clean
X-MailScanner-From: owner-selinux at tycho.ncsc.mil

+dontaudit updfstab_t home_root_t:dir { getattr search };
+dontaudit updfstab_t { home_dir_type home_type }:dir { search };

Why is fstab-sync trying to access home directories?

+allow ttyfile tmpfs_t:filesystem { associate };

Better to just use the dev_fs attribute.  I have attached a patch to do this 
as well as clean up a few other minor issues with the macros directory.

_______________________________________________
hal mailing list
hal at freedesktop.org
http://freedesktop.org/mailman/listinfo/hal



More information about the Hal mailing list