[selinux-policy: 2885/3172] allow sudo to create sudo_db_t dirs
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 23:16:54 UTC 2010
commit d46a2b01151fd5061cdecd4004dc5993225c053d
Author: Dan Walsh <dwalsh at redhat.com>
Date: Wed Sep 8 18:32:15 2010 -0400
allow sudo to create sudo_db_t dirs
policy/modules/admin/sudo.if | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
---
diff --git a/policy/modules/admin/sudo.if b/policy/modules/admin/sudo.if
index cf1ca30..464a11e 100644
--- a/policy/modules/admin/sudo.if
+++ b/policy/modules/admin/sudo.if
@@ -48,6 +48,7 @@ template(`sudo_role_template',`
ubac_constrained($1_sudo_t)
role $2 types $1_sudo_t;
+ manage_dirs_pattern($1_sudo_t, sudo_db_t, sudo_db_t)
manage_files_pattern($1_sudo_t, sudo_db_t, sudo_db_t)
##############################
More information about the scm-commits
mailing list