Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 313538 Details for
Bug 458037
dbus/policykit enabled system-config-services doesn't work with SELinux/targeted enforcing
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
Output of "ausearch -m avc -ts today | audit2allow -m systemconfigservices" from running system-config-services in permissive mode
systemconfigservices.audit2allow (text/plain), 5.78 KB, created by
Nils Philippsen
on 2008-08-06 09:14:42 UTC
(
hide
)
Description:
Output of "ausearch -m avc -ts today | audit2allow -m systemconfigservices" from running system-config-services in permissive mode
Filename:
MIME Type:
Creator:
Nils Philippsen
Created:
2008-08-06 09:14:42 UTC
Size:
5.78 KB
patch
obsolete
> >module systemconfigservices 1.0; > >require { > type auditd_exec_t; > type httpd_script_exec_t; > type auditd_script_exec_t; > type gpm_exec_t; > type etc_runtime_t; > type var_lock_t; > type auditd_var_run_t; > type initrc_exec_t; > type gpm_t; > type sendmail_var_run_t; > type crond_exec_t; > type system_crond_var_lib_t; > type auditd_t; > type sendmail_t; > type iptables_t; > type nscd_script_exec_t; > type NetworkManager_var_run_t; > type polkit_t; > type syslogd_script_exec_t; > type crond_t; > type restorecond_exec_t; > type unconfined_t; > type NetworkManager_t; > type hald_t; > type usr_t; > type sshd_var_run_t; > type crond_var_run_t; > type gpm_var_run_t; > type system_dbusd_t; > type polkit_auth_exec_t; > type shell_exec_t; > type hald_exec_t; > type restorecond_t; > type sendmail_exec_t; > type ifconfig_t; > type sshd_exec_t; > type hald_var_run_t; > type ntpd_script_exec_t; > type sshd_t; > type gamin_exec_t; > type polkit_resolve_exec_t; > type restorecond_var_run_t; > class capability { setuid sys_ptrace }; > class file { execute read getattr execute_no_trans }; > class lnk_file read; > class dir { search read getattr }; > class fifo_file { write getattr }; >} >require { > type auditd_exec_t; > type httpd_script_exec_t; > type auditd_script_exec_t; > type gpm_exec_t; > type etc_runtime_t; > type var_lock_t; > type auditd_var_run_t; > type initrc_exec_t; > type gpm_t; > type sendmail_var_run_t; > type crond_exec_t; > type system_crond_var_lib_t; > type auditd_t; > type sendmail_t; > type iptables_t; > type nscd_script_exec_t; > type NetworkManager_var_run_t; > type polkit_t; > type syslogd_script_exec_t; > type crond_t; > type restorecond_exec_t; > type unconfined_t; > type NetworkManager_t; > type hald_t; > type usr_t; > type sshd_var_run_t; > type crond_var_run_t; > type gpm_var_run_t; > type system_dbusd_t; > type polkit_auth_exec_t; > type shell_exec_t; > type hald_exec_t; > type restorecond_t; > type sendmail_exec_t; > type ifconfig_t; > type sshd_exec_t; > type hald_var_run_t; > type ntpd_script_exec_t; > type sshd_t; > type gamin_exec_t; > type polkit_resolve_exec_t; > type restorecond_var_run_t; > class capability { setuid sys_ptrace }; > class file { execute read getattr execute_no_trans }; > class lnk_file read; > class dir { search read getattr }; > class fifo_file { write getattr }; >} > >#============= ifconfig_t ============== >allow ifconfig_t system_dbusd_t:fifo_file write; > >#============= iptables_t ============== >allow iptables_t system_dbusd_t:fifo_file { write getattr }; > >#============= polkit_t ============== >allow polkit_t polkit_auth_exec_t:file { read execute execute_no_trans }; >allow polkit_t polkit_resolve_exec_t:file { read execute execute_no_trans }; >allow polkit_t self:capability { setuid sys_ptrace }; >allow polkit_t system_crond_var_lib_t:dir search; >allow polkit_t system_crond_var_lib_t:file read; >allow polkit_t unconfined_t:dir search; >allow polkit_t unconfined_t:file read; >allow polkit_t unconfined_t:lnk_file read; > >#============= system_dbusd_t ============== >allow system_dbusd_t NetworkManager_t:dir { read getattr search }; >allow system_dbusd_t NetworkManager_t:file { read getattr }; >allow system_dbusd_t NetworkManager_t:lnk_file read; >allow system_dbusd_t NetworkManager_var_run_t:dir read; >allow system_dbusd_t NetworkManager_var_run_t:file { read getattr }; >allow system_dbusd_t auditd_exec_t:file getattr; >allow system_dbusd_t auditd_script_exec_t:file { read getattr }; >allow system_dbusd_t auditd_t:dir { read getattr search }; >allow system_dbusd_t auditd_t:file { read getattr }; >allow system_dbusd_t auditd_t:lnk_file read; >allow system_dbusd_t auditd_var_run_t:file { read getattr }; >allow system_dbusd_t crond_exec_t:file getattr; >allow system_dbusd_t crond_t:dir { read getattr search }; >allow system_dbusd_t crond_t:file { read getattr }; >allow system_dbusd_t crond_t:lnk_file read; >allow system_dbusd_t crond_var_run_t:file { read getattr }; >allow system_dbusd_t etc_runtime_t:file { read getattr }; >allow system_dbusd_t gamin_exec_t:file { read execute execute_no_trans }; >allow system_dbusd_t gpm_exec_t:file getattr; >allow system_dbusd_t gpm_t:dir { read getattr search }; >allow system_dbusd_t gpm_t:file { read getattr }; >allow system_dbusd_t gpm_t:lnk_file read; >allow system_dbusd_t gpm_var_run_t:file { read getattr }; >allow system_dbusd_t hald_exec_t:file getattr; >allow system_dbusd_t hald_t:dir { read getattr search }; >allow system_dbusd_t hald_t:file { read getattr }; >allow system_dbusd_t hald_t:lnk_file read; >allow system_dbusd_t hald_var_run_t:file { read getattr }; >allow system_dbusd_t httpd_script_exec_t:file { read getattr }; >allow system_dbusd_t initrc_exec_t:file { read getattr }; >allow system_dbusd_t nscd_script_exec_t:file { read getattr }; >allow system_dbusd_t ntpd_script_exec_t:file { read getattr }; >allow system_dbusd_t restorecond_exec_t:file getattr; >allow system_dbusd_t restorecond_t:dir { read getattr search }; >allow system_dbusd_t restorecond_t:file { read getattr }; >allow system_dbusd_t restorecond_t:lnk_file read; >allow system_dbusd_t restorecond_var_run_t:file { read getattr }; >allow system_dbusd_t self:capability sys_ptrace; >allow system_dbusd_t self:fifo_file getattr; >allow system_dbusd_t sendmail_exec_t:file getattr; >allow system_dbusd_t sendmail_t:dir { read getattr search }; >allow system_dbusd_t sendmail_t:file { read getattr }; >allow system_dbusd_t sendmail_t:lnk_file read; >allow system_dbusd_t sendmail_var_run_t:file { read getattr }; >allow system_dbusd_t shell_exec_t:file { read execute getattr execute_no_trans }; >allow system_dbusd_t sshd_exec_t:file getattr; >allow system_dbusd_t sshd_t:dir { read getattr search }; >allow system_dbusd_t sshd_t:file { read getattr }; >allow system_dbusd_t sshd_t:lnk_file read; >allow system_dbusd_t sshd_var_run_t:file { read getattr }; >allow system_dbusd_t syslogd_script_exec_t:file { read getattr }; >allow system_dbusd_t usr_t:file { execute execute_no_trans }; >allow system_dbusd_t var_lock_t:dir read;
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=313538">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 458037
:
313536
|
313537
| 313538 |
314467
|
315429
|
315430