psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

69779d5 Changes to the apache policy module and dependencies

Authored and Committed by Dominick Grift 11 years ago
raw patch tree parent
4 files changed. 70 lines added. 7 lines removed.
apache.if
file modified
+23 -0
apache.te
file modified
+2 -6
gpg.if
file modified
+19 -0
gpg.te
file modified
+26 -1 
    Changes to the apache policy module and dependencies
    
    httpd_t can run gpg in the gpg web domain conditionally for php pear
    Crypt_GPG (rhbz#562083)
    
    We would probably be better off with a domain prefix derived gpg_role()
    but this will do as we do not want httpd_t to be able to domain
    transition to gpg_t because that will give httpd_t a path to users keys
    
    Left out some rules that i am not confident about
    
    Do not allow system scripts to execute httpd temporary content
    conditionally
    
    Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
file modified
+23 -0
file modified
+2 -6
file modified
+19 -0
file modified
+26 -1
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.