PDA

View Full Version : Fedora SELinux Support

Pages : 1 [2] 3 4 5 6
  1. SLIDE download
  2. Running sshd inside mock
  3. New benchmark on SELINUX and Fedora 15 from Phoronix
  4. File Labeling
  5. Confined Users & SELinux Denials
  6. SELinux "upgrade" issues
  7. Is it possible to run chromium in a SELinux sandbox?
  8. clamd -selinux Should I allow?
  9. clamd -selinux Should I allow?
  10. How can firefox (sometimes) make memory executable?
  11. How can firefox (sometimes) make memory executable?
  12. TS under SELinux policy
  13. Please sync with upstream of sepgsql_contexts
  14. SEL & Spamassassin
  15. SELinux repository for Red Hat
  16. multipath: allow mapper/mpath specfifications in kickstart.
  17. add textrel_shlib_t in package %post or in selinux-policy?
  18. fedora 14 packagekitd avc messages
  19. sandbox: Thunderbird + Enigmail/GPG
  20. I wrote up an semanage bash command completion script.
  21. (not sandboxed) firefox AVCs (execstack)
  22. mouse pointer stuck in browser sandbox window
  23. sandbox & Fonts (Cosmetic Issue)
  24. Firefox & Sandbox - F14
  25. problem with likewise and audit messages
  26. problem with likewise and audit messages
  27. interesting group of AVCs
  28. Cannot disable SELinux
  29. Require your partnership & co-operation for Investment
  30. specifying the destination of '-i' files/dirs
  31. nagios plugins with state files
  32. Upgrade F13 -> F14: gdm-session-wor / login denials
  33. excluding auditd events
  34. SELinux is preventing /usr/bin/skype from mmap_zero access on the memprotect Unknown.
  35. SELinux is preventing /usr/bin/skype from mmap_zero access on the memprotect Unknown.
  36. non permanent '-H'
  37. Fedora 14 does not respect /etc/sysconfig/selinux?
  38. Fedora 14 does not respect /etc/sysconfig/selinux?
  39. During startup, many failed to set security context msgs
  40. F13" SeLinux Troubleshooter no longer starts
  41. new policy modules submission
  42. new policy modules submission
  43. modifying the Xephyr window title (patch)
  44. Pointer to known threats to test sVirt/SELinux for LXC/KVM
  45. dontaudit statement specifics
  46. iptables match based on source security context?
  47. MLS and Desktop ENvironment
  48. 3
  49. MLS and back from runlevel 3
  50. CVE-2011-0997: How strictly confined is dhcpc_t?
  51. CVE-2011-0997: How strictly confined is dhcpc_t?
  52. about restarting services and user domains F14
  53. Linux Security Summit 2011 - Announcement and CFP
  54. policy issue with munin
  55. unconfined domains and Dan Walsh's article
  56. mkctype is no longer useful.
  57. serefpolicy: named getattr AVC accessing /dev/random
  58. i get this on rawhide.
  59. sandbox: changed handling of /tmp (2.0.83-33.7.fc13.x86_64)
  60. 3 what looks like bugs in rawhide policy
  61. eggdrop policy module
  62. logrotate accessing /root avc messages
  63. Set SELinux context of host ssh keys correctly after reinstallation
  64. update breaks sandbox (2.0.83-33.3.fc13.x86_64)
  65. update breaks sandbox (2.0.83-33.3.fc13.x86_64)
  66. Restrict httpd network connections to a specific network interface?
  67. nginx policy
  68. Restrict httpd network connections to a specific network interface?
  69. Restrict httpd network connections to a specific network interface?
  70. Restrict httpd network connections to a specific network interface?
  71. help adding a type attribute to a domain
  72. denying despite allow rule
  73. Sorry about cross posting to multiple lists.
  74. reference policy
  75. AW: selinux Digest, Vol 84, Issue 10
  76. Change xhost auth when doing a liveinst (#663294)
  77. Restrict unconfined_u access to a dir in targed mode
  78. need to superseed default file context for virtualbox files but no method works
  79. need to superseed default file context for virtualbox files but no method works
  80. semodule -b base.pp -- Segmentation fault.
  81. recently-used.xbel wrong context
  82. recently-used.xbel wrong context
  83. Rawhide AVC denials
  84. systemd to require selinux-policy?
  85. error :: chrome's global requirements were not met
  86. chrome access of high energy physics library
  87. Need help restricting root access to a file or directory.
  88. New file getting different context than what restorecond specifies
  89. AVC report from command line
  90. HOWTO Logging tcp binding on permissive mode
  91. Right context for /var/spool/cron/crontabs/root
  92. mod_passenger and Rails 3 module work
  93. smartd and 3ware
  94. smartd and 3ware
  95. Using dyntransition to reduce privileges for Web application
  96. mysql_upgrade selinux issues
  97. nscd AVC
  98. F14 - NVIDIA & Labels
  99. Matlab
  100. Matlab
  101. udev and secure_mode_insmod in selinux-policy-3.9.7-10.fc14 and later
  102. Another "execstack" (AviDemux)
  103. udev and secure_mode_insmod in selinux-policy-3.9.7-10.fc14 and later
  104. GIMP help shouldn't need execstack, should it?
  105. SELinux denies qmailadmin access
  106. SELinux and Shorewall with IPSets (FC14)
  107. Trouble sending mail from PHP scripts
  108. Using audti2why with tail?
  109. Denied for com='ps' name='stat' {open} {read} {search}
  110. Attention: Beneficiary
  111. Denied for com='ps' name='stat' {open} {read} {search}
  112. razor policy
  113. sshd_t & guest_t - Boolean suggestion
  114. Type aliases & sesearch
  115. Getting a RuntimeError: Invalid argument from _seinfo
  116. Reporting denials which already exist in bugzilla
  117. F13: nautilus & mmap
  118. F13: nautilus & mmap
  119. Nero for Linux & rpm initial labels
  120. Nero for Linux & rpm initial labels
  121. No AVC when sshd is mislabeled
  122. No AVC when sshd is mislabeled
  123. selinux policy for encrypted files
  124. The concept of unconfined_t
  125. avc: smartcard token login
  126. Issues logging into to more than one system
  127. avc: smartcard token login
  128. touch & how labels are created
  129. touch & how labels are created
  130. Fwd: http AVC
  131. http AVC
  132. proftpd AVC on Rawhide
  133. AVC bluetoothd
  134. Alexander Slesarev wants to stay in touch on LinkedIn
  135. Fedora 14 AVCs
  136. system shuts down during file system relabel
  137. building go compiler
  138. socket files and ruby/passenger
  139. Please review: Make a confined kernel boot.
  140. Fix typo in interface name
  141. Selinux and pyzor issues Fedora 14
  142. iptables AVC
  143. What is missing with this policy
  144. Named and /dev/random Fedora 14
  145. Named and /dev/random Fedora 14
  146. node-specific rules
  147. sandbox in X11 root window on RHEL6
  148. 26 alerts as of updating to rawhide now that Fedora 14 is out :(
  149. sealerts upon updating to rawhide from F14
  150. httpd_sys_content_t
  151. selinux blocking access, no AVC warnings in /var/log/messages or /var/log/audit/audit.log
  152. selinux blocking access, no AVC warnings in /var/log/messages or /var/log/audit/audit.log
  153. tzdata AVC
  154. selinux policy UBAC question
  155. Come spy on me Facebook Port
  156. Seek for help
  157. Transitions for files.
  158. paths
  159. Addition of selinux users causes "Multiple same specifications" warnings during startup
  160. why label /dev/hugepages directory hugetlbfs_t?
  161. cgi over nfs
  162. httpd_use_nfs
  163. F11 VSFTPD post install problem
  164. F13: SELinux is preventing /usr/bin/updatedb "read" access on My Documents
  165. F13: SELinux is preventing /usr/bin/updatedb "read" access on My Documents
  166. F13: SELinux is preventing /usr/sbin/smbd "quotaget" access
  167. odd message - execmod related
  168. Is setroubleshoot-server designed for a server?
  169. error: ssh_selinux_getctxbyname: Failed to get default SELinux security context
  170. error: ssh_selinux_getctxbyname: Failed to get default SELinux security context
  171. Selinux Audit -- Rawhide (F15) Deprecated entry?
  172. SELinux and Rsyslog
  173. F13: Unable to mount ntfs-3g, option: 'context=' no longer supported?
  174. F13: Unable to mount ntfs-3g, option: 'context=' no longer supported?
  175. F13: Unable to mount ntfs-3g, option: 'context=' no longer supported?
  176. Statement precedence/priority (neverallow)
  177. genfscon question
  178. secmark=XXX mapping
  179. Labeling of ~/.local, ~/.config, ... owned by gnome though not gnome specific
  180. Labeling of ~/.local, ~/.config, ... owned by gnome though not gnome specific
  181. What's the command...?
  182. Fedora UBAC feature
  183. Fedora UBAC feature
  184. SELinux user domain policy question
  185. sandbox: open new firefox tab from outside
  186. openvpn and script execution
  187. openvpn and script execution
  188. openvpn and script execution
  189. Giving httpd access to a mounted NTFS volume
  190. audit log not being rotated
  191. wine preloader? being denied by selinux
  192. wine preloader? being denied by selinux
  193. sandbox: close one window -> closes them all
  194. setroubleshootd dead but pid file exists
  195. setroubleshootd dead but pid file exists
  196. pipefs AVC
  197. netif labelling
  198. Issue with Gnome setting?
  199. .autorelabel on mounted filesystems
  200. NFSD warning?
  201. NFSD warning?
  202. Clamd - again...
  203. using port (sub)ranges
  204. Create denial on nshadow when logging in with an expired password
  205. sandbox cleanup?
  206. uid 0 <- Xorg <- Xephyr <- $program <- $exploit
  207. uid 0 <- Xorg <- Xephyr <- $program <- $exploit
  208. This isn't nice
  209. Add dlabel confirmation dialog to interactive installs (#570053)
  210. Support for Brocade FCoE/CEE to PCIe CNAs (#549677)
  211. Add xts module to initrd (#553411)
  212. Add support for LSI 3ware 97xx SAS/SATA RAID Controller (#572341)
  213. Support macro documantation
  214. F12/3: SELinux is preventing /usr/bin/perl from binding to port XXXXX
  215. F12/3: SELinux is preventing /usr/bin/perl from binding to port XXXXX
  216. SELinux integration in LDAP
  217. SELinux integration in LDAP
  218. Sample Passenger/Rails policy for review
  219. sandbox: firefox
  220. avc { module_request, relabelfrom }: openvpn->tun
  221. avc { module_request, relabelfrom }: openvpn->tun
  222. Mlogc problem after aupgrade to F13
  223. Mlogc problem after aupgrade to F13
  224. A sendmail problem
  225. SELINUX_ERR about sendmail (postfix version) on F-13
  226. dac_override and dac_read_search ... again!
  227. sandbox -X doesn't work in F13
  228. SELINUX in permissive mode *prevents* write access?
  229. gdb and avc
  230. consolekit, udev and noatsecure
  231. Selinux + ruby + httpd
  232. xguest for CentOS?
  233. xguest for CentOS?
  234. SELinux, Samba, & Winbind
  235. Questions on creating policy
  236. system user home
  237. add constraint functionality to mcstrans
  238. Selinux and tomcat
  239. Two diferent Java programs on same machine
  240. mcstrans: bug fix for mixed raw and translated level
  241. Two diferent Java programs on same machine
  242. Enforce the same logic on autopart shrink as on resize (#608172)
  243. Curious AVC for syslog-ng listening on non-standard TCP Port.
  244. SELinux and openswan
  245. sandbox -X not (longer) working
  246. tor: dac_override, dac_read_search, name_bind and net_bind_service
  247. Anaconda Redesign
  248. bloody links!
  249. node-selinux
  250. (take II) Don't deactivate active device before running nm-c-e (#608773)