[selinux-policy: 1727/3172] trivial aide fix from dan
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:34:16 UTC 2010
commit ae32fb7e7b08bc3c1ea65d7db95e752eae376141
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Mon Apr 30 15:09:15 2007 +0000
trivial aide fix from dan
policy/modules/services/aide.fc | 1 +
policy/modules/services/aide.te | 4 ++--
2 files changed, 3 insertions(+), 2 deletions(-)
---
diff --git a/policy/modules/services/aide.fc b/policy/modules/services/aide.fc
index be41434..8c1b8b4 100644
--- a/policy/modules/services/aide.fc
+++ b/policy/modules/services/aide.fc
@@ -2,4 +2,5 @@
/var/lib/aide(/.*) gen_context(system_u:object_r:aide_db_t,mls_systemhigh)
+/var/log/aide(/.*)? gen_context(system_u:object_r:aide_log_t,mls_systemhigh)
/var/log/aide.log -- gen_context(system_u:object_r:aide_log_t,mls_systemhigh)
diff --git a/policy/modules/services/aide.te b/policy/modules/services/aide.te
index 84fe2eb..2e345f0 100644
--- a/policy/modules/services/aide.te
+++ b/policy/modules/services/aide.te
@@ -1,5 +1,5 @@
-policy_module(aide,1.0.0)
+policy_module(aide,1.0.1)
########################################
#
@@ -32,7 +32,7 @@ send_audit_msgs_pattern(aide_t)
manage_files_pattern(aide_t,aide_db_t,aide_db_t)
# logs
-allow aide_t aide_log_t:file manage_file_perms;
+manage_files_pattern(aide_t, aide_log_t, aide_log_t)
logging_log_filetrans(aide_t,aide_log_t,file)
files_read_all_files(aide_t)
More information about the scm-commits
mailing list