From: Dan Walsh <dwalsh@redhat.com>
Date: Mon, 11 Jul 2011 22:19:30 +0000 (-0400)
Subject: Dontaudit logrotate attempting to list mnt file systems
X-Git-Tag: 000~727^2
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=8bce5ec7b88af551110e6a1bf11c01501fd1a6f8;p=people%2Fstevee%2Fselinux-policy.git

Dontaudit logrotate attempting to list mnt file systems
---

diff --git a/policy/modules/admin/logrotate.te b/policy/modules/admin/logrotate.te
index 893ea9a5..ee8eaf6b 100644
--- a/policy/modules/admin/logrotate.te
+++ b/policy/modules/admin/logrotate.te
@@ -102,6 +102,7 @@ files_read_var_lib_files(logrotate_t)
 files_manage_generic_spool(logrotate_t)
 files_manage_generic_spool_dirs(logrotate_t)
 files_getattr_generic_locks(logrotate_t)
+files_dontaudit_list_mnt(logrotate_t)
 
 # cjp: why is this needed?
 init_domtrans_script(logrotate_t)