Bug 1002593
Summary: | Antiviruses' policy comparison regarding the move to antivirus_t | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Michal Trunecka <mtruneck> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED ERRATA | QA Contact: | Michal Trunecka <mtruneck> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.5 | CC: | dwalsh, ebenes, mmalik |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | selinux-policy-3.7.19-214.el6 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-11-21 10:50:15 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Michal Trunecka
2013-08-29 13:49:06 UTC
Nice work Michal. Yeap. Michal, I see typealias antivirus_log_t alias { amavis_var_log_t clamd_var_log_t freshclam_var_log_t } dontaudit clamscan_t initrc_var_run_t : file { write lock } Fixed. dontaudit amavis_t proc_t : file { ioctl read getattr lock open } we allow it now. dontaudit clamscan_t clamscan_t : process execmem dontaudit freshclam_t freshclam_t : process execmem dontaudit amavis_t amavis_t : process execmem dontaudit clamd_t clamd_t : process execmem these are a part of the antivirus_use_jit boolean boolean. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-1598.html |