Description of problem: Add prelude_correlator policy to prelude domain. Add PADS daemon domain. Fix some policy in prelude domain. Fix some policy in snort domain. Fix some policy in postgresql domain. Fix contexts in amavisd domain. Version-Release number of selected component (if applicable): 3.5.4-2.fc10 Additional info: Please see attached patch.
Created attachment 314977 [details] various policy
There is one issue with PADS. By default it manages a file in /etc. (/etc/pads-assets.csv) This required me to give pads manage_file_perms for files in etc labeled pads_config_t. I could may split this in PADS file that can only be read in /etc and PADS a file that can be fully manage by PADS.
Try to get PADS to fix this by moving it to a different directory /var/lib/pads or /var/run/pads/ You can create a pads_etc_rw_t filess_etc_filetrans(pads_t, pads_etc_rw_t, file)
Fixed in selinux-policy-3.5.7-1.fc10.noarch I think your labeling on /etc/pads* is incorrect.