mount_domtrans(bootloader_t)
')
- #optional_policy(`
- # unconfined_domain(bootloader_t)
- #')
+ optional_policy(`
+ unconfined_domain(bootloader_t)
+ ')
')
optional_policy(`
optional_policy(`
unconfined_domtrans(kudzu_t)
- #unconfined_domain(kudzu_t)
')
rpm_manage_tmp_files(prelink_t)
')
-#optional_policy(`
-# unconfined_domain(prelink_t)
-#')
+optional_policy(`
+ unconfined_domain(prelink_t)
+')
########################################
#
optional_policy(`
rpm_manage_cache(tmpreaper_t)
')
-
-#optional_policy(`
-# unconfined_domain(tmpreaper_t)
-#')
mta_manage_spool(useradd_t)
-#ifdef(`distro_redhat',`
-# optional_policy(`
-# unconfined_domain(useradd_t)
-# ')
-#')
-
optional_policy(`
apache_manage_all_user_content(useradd_t)
')
udev_read_state(apmd_t) #necessary?
')
-#optional_policy(`
-# unconfined_domain(apmd_t)
-#')
-
optional_policy(`
vbetool_domtrans(apmd_t)
')
virt_manage_images(devicekit_disk_t)
')
-#optional_policy(`
-# unconfined_domain(devicekit_t)
-# unconfined_domain(devicekit_power_t)
-# unconfined_domain(devicekit_disk_t)
-#')
+optional_policy(`
+ unconfined_domain(devicekit_t)
+ unconfined_domain(devicekit_power_t)
+ unconfined_domain(devicekit_disk_t)
+')
########################################
#
udev_read_db(piranha_pulse_t)
')
-#optional_policy(`
-# unconfined_domain(piranha_pulse_t)
-#')
-
####################################
#
# piranha domains common policy
virt_stream_connect(rgmanager_t)
')
-#optional_policy(`
-# unconfined_domain(rgmanager_t)
-#')
+optional_policy(`
+ unconfined_domain(rgmanager_t)
+')
optional_policy(`
xen_domtrans_xm(rgmanager_t)
udev_read_db(virtd_t)
')
-#optional_policy(`
-# unconfined_domain(virtd_t)
-#')
+optional_policy(`
+ unconfined_domain(virtd_t)
+')
########################################
#
term_use_all_inherited_terms(fsadm_t)
-#ifdef(`distro_redhat',`
-# optional_policy(`
-# unconfined_domain(fsadm_t)
-# ')
-#')
+ifdef(`distro_redhat',`
+ optional_policy(`
+ unconfined_domain(fsadm_t)
+ ')
+')
optional_policy(`
amanda_rw_dumpdates_files(fsadm_t)
rpm_manage_script_tmp_files(ldconfig_t)
')
-#optional_policy(`
-# unconfined_domain(ldconfig_t)
-#')
-
lvm_domtrans(clvmd_t)
lvm_read_config(clvmd_t)
-#ifdef(`distro_redhat',`
-# optional_policy(`
-# unconfined_domain(clvmd_t)
-# ')
-#')
+ifdef(`distro_redhat',`
+ optional_policy(`
+ unconfined_domain(clvmd_t)
+ ')
+')
optional_policy(`
aisexec_stream_connect(clvmd_t)
# this is from the initrd:
files_rw_isid_type_dirs(lvm_t)
- #optional_policy(`
- # unconfined_domain(lvm_t)
- #')
+ optional_policy(`
+ unconfined_domain(lvm_t)
+ ')
')
optional_policy(`
rpm_manage_script_tmp_files(depmod_t)
')
-#optional_policy(`
-# # Read System.map from home directories.
-# unconfined_domain(depmod_t)
-#')
+optional_policy(`
+ unconfined_domain(depmod_t)
+')
########################################
#
')
optional_policy(`
- #unconfined_domain(insmod_t)
+ unconfined_domain(insmod_t)
unconfined_dontaudit_rw_pipes(insmod_t)
')
udev_read_db(mdadm_t)
')
-#optional_policy(`
-# unconfined_domain(mdadm_t)
-#')
+optional_policy(`
+ unconfined_domain(mdadm_t)
+')
')
')
-#optional_policy(`
-# unconfined_domain(setfiles_mac_t)
-#')
+optional_policy(`
+ unconfined_domain(setfiles_mac_t)
+')
projects / people / stevee / selinux-policy.git / commitdiff
