FAQ Search Today's Posts Mark Forums Read

» Linux Archive
Home
New Posts
Search
FAQ


Go Back   Linux Archive > Redhat > Fedora Development
Reload this Page start setroubleshootd as audisp plugin

 
 
LinkBack Thread Tools
 
Old 09-26-2008, 01:57 PM
Christoph Höger
 
Default start setroubleshootd as audisp plugin
Hi,

thanks to Steve Grubb I figured out how to make setroubleshootd start as
an auditd plugin.
with the two files attached (plugin conf and selinux module) it should
be a little faster in boot (see attached bootchart).

Anyone wants to bring that into the setroubleshoot/audit pkg?

regards

christoph

policy_module(auditd-troubled,0.1)

gen_require(` type setroubleshootd_exec_t; ')
gen_require(` type setroubleshootd_t; ')
gen_require(` type audisp_t; ')

allow audisp_t setroubleshootd_exec_t:file read_file_perms;
allow audisp_t setroubleshootd_exec_t:file execute;
domain_auto_trans(audisp_t, setroubleshootd_exec_t, setroubleshootd_t)
corecmd_exec_bin(audisp_t)
allow setroubleshootd_t audisp_t:unix_stream_socket { ioctl read write };
allow audisp_t setroubleshootd_trocess signal;
active = yes
direction = out
path = /usr/sbin/setroubleshootd
type = always
args = -f
format = string
--
fedora-devel-list mailing list
fedora-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-devel-list
 

Thread Tools




All times are GMT. The time now is 11:26 PM.

VBulletin, Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org

Contact Us - Linux Archive - Archive - Top -