Many thanks to you all on this subject. The Fedora SELinux User Guide suggested by
Tristan:
http://docs.fedoraproject.org/en-US/Fedora/13/html/Security-Enhanced_Linu...
was particularly useful, wish I had found that a week earlier. Coverage of the policy
language at:
http://selinuxproject.org/page/PolicyLanguage
Was useful. And the suggestions for applying the telnetd_exec_t type to my executable took
me forward. I then ran into other problems, like write access to files. It seems to me at
this time that I need to set up profiles for the whole of our comms product which looks
like being a project for the next release unfortunately.
Once again, thanks for your assistance.
Dave.
On Thu, 2012-07-26 at 08:52 -0500, Ted Toth wrote:
You could try using the exist telnet policy in ref policy by chconing
your executable to telnetd_exec_t. However depending on what your
custom telnet daemon does you may still get AVCs.
Ted
I agree. i am not familiar with telnet but it might also need pam/pam_selinux to tell
telnet in what context the user should log in.
--
selinux mailing list
selinux(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/selinux
-----------------------------------------------------------------------------------------
This email is sent on behalf of Northgate Information Solutions Limited and its associated
companies ("Northgate") and is strictly confidential and intended solely for the
addressee(s).
If you are not the intended recipient of this email you must: (i) not disclose, copy or
distribute its contents to any other person nor use its contents in any way or you may be
acting unlawfully; (ii) contact Northgate immediately on +44 (0)1442 232424 quoting the
name of the sender and the addressee then delete it from your system.
Northgate has taken reasonable precautions to ensure that no viruses are contained in this
email, but does not accept any responsibility once this email has been transmitted. You
should scan attachments (if any) for viruses.
Northgate Information Solutions Limited. Registered in England no. 06442582 - Northgate
Information Solutions UK Limited. Registered in England no. 968498 - NorthgateArinso UK
Limited .Registered in England no. 1587537 - Moorepay Limited. Registered in England
no. 891686 - First Business Support Limited. Registered in England no. 3056267 -
Registered Office: Peoplebuilding 2, Peoplebuilding Estate, Maylands Avenue, Hemel
Hempstead, Hertfordshire HP2 4NW
Northgate Managed Services Limited (NI). Registered in Northern Ireland no. NI032979 -
LearnServe Limited (NI). Registered in Northern Ireland no. NI043825
Registered Office: Hillview House, 61 Church Road, Newtownabbey, Co. Antrim, BT36 7LQ
-----------------------------------------------------------------------------------------