3 what looks like bugs in rawhide policy

[Daniel J Walsh]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 03/28/2011 08:49 AM, Miroslav Grepl wrote:
> On 03/26/2011 12:34 PM, Dominick Grift wrote:
> 1. unconfined_login boolean does not work.
>> Need to look at this.
> 2. either userdom_use_user_terminals needs "open" for user_devpts_t or
> we have to allow $1_sudo_t open access to user_devpts_t:chr_file.
> 
> (allow staff_sudo_t user_devpts_t:chr_file open;)
>> It is fixed in selinux-policy-3.9.16-7.fc16 which I need to rebuild.
> 3. mount needs to mounton var_lock_t directories.
> 
> (allow mount_t var_lock_t:dir mounton;)
> 
We need files_mountpoint(var_lock_t) in F15 and beyond.
- --
selinux mailing list
selinux at lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/selinux

> --
> selinux mailing list
> selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAk2R5FkACgkQrlYvE4MpobPvZACgnOvallfC0Bw47adLXx4GSer0
xX4Ani+oem80MEaXZO1p/9760m7aRsOn
=Zqm4
-----END PGP SIGNATURE-----