+- Add JIT usage for freshclam.
- Remove ethereal module since the application was renamed to wireshark.
- Remove duplicate/redundant rules, from Russell Coker.
- Increased default number of categories to 1024, from Russell Coker.
-policy_module(clamav, 1.8.0)
+policy_module(clamav, 1.8.1)
## <desc>
## <p>
exim_read_spool_files(clamd_t)
')
+tunable_policy(`clamd_use_jit',`
+ allow clamd_t self:process execmem;
+', `
+ dontaudit clamd_t self:process execmem;
+')
+
########################################
#
# Freshclam local policy
cron_system_entry(freshclam_t, freshclam_exec_t)
')
+tunable_policy(`clamd_use_jit',`
+ allow freshclam_t self:process execmem;
+', `
+ dontaudit freshclam_t self:process execmem;
+')
+
########################################
#
# clamscam local policy
mta_send_mail(clamscan_t)
-tunable_policy(`clamd_use_jit',`
- allow clamd_t self:process execmem;
-', `
- dontaudit clamd_t self:process execmem;
-')
-
optional_policy(`
amavis_read_spool_files(clamscan_t)
')
projects / people / stevee / selinux-policy.git / commitdiff
