34671 – publicfile policy files

Bug 34671 - publicfile policy files

Summary: publicfile policy files

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Server (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Chris PeBenito (RETIRED)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2003-11-28 23:30 UTC by petre rodan (RETIRED)
Modified:	2003-12-22 06:36 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
file_contexts (publicfile.fc,378 bytes, text/plain) 2003-11-28 23:31 UTC, petre rodan (RETIRED)	Details
type_enforcement (publicfile.te,924 bytes, text/plain) 2003-11-28 23:31 UTC, petre rodan (RETIRED)	Details
file contexts (publicfile.fc,464 bytes, text/plain) 2003-12-03 13:17 UTC, petre rodan (RETIRED)	Details
type enforcement (publicfile.te,590 bytes, text/plain) 2003-12-03 13:17 UTC, petre rodan (RETIRED)	Details
Show Obsolete (2) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description petre rodan (RETIRED) gentoo-dev

2003-11-28 23:30:21 UTC

http and ftp daemon started by tcpserver (ucspi-tcp.te is needed)

Comment 1 petre rodan (RETIRED) gentoo-dev

2003-11-28 23:31:05 UTC

Created attachment 21450 [details]
file_contexts

Comment 2 petre rodan (RETIRED) gentoo-dev

2003-11-28 23:31:41 UTC

Created attachment 21451 [details]
type_enforcement

Comment 3 petre rodan (RETIRED) gentoo-dev

2003-12-03 13:17:02 UTC

Created attachment 21649 [details]
file contexts

latest version

Comment 4 petre rodan (RETIRED) gentoo-dev

2003-12-03 13:17:50 UTC

Created attachment 21650 [details]
type enforcement

latest

Comment 5 petre rodan (RETIRED) gentoo-dev

2003-12-03 13:19:12 UTC

net_contexts should also contain:

ifdef(`publicfile.te', `portcon tcp 80  system_u:object_r:utcpserver_port_t
portcon tcp 21  system_u:object_r:utcpserver_port_t')

Comment 6 Chris PeBenito (RETIRED) gentoo-dev

2003-12-09 12:50:30 UTC

committed to policy cvs.  does publicfile only use passive ftp?  is that why theres no portcon for tcp 20?

Comment 7 petre rodan (RETIRED) gentoo-dev

2003-12-12 02:40:20 UTC

as a matter of fact it also supports active ftp, but I have seen that ftpd also only uses  ifdef(`ftpd.te', `portcon tcp 21 system_u:object_r:ftp_port_t') ...

so I am a little confused by this :(

Comment 8 Chris PeBenito (RETIRED) gentoo-dev

2003-12-21 09:46:06 UTC

committed to portage

Comment 9 petre rodan (RETIRED) gentoo-dev

2003-12-22 02:55:39 UTC

thanks, it works

bye,
peter

Comment 10 Chris PeBenito (RETIRED) gentoo-dev

2003-12-22 06:36:14 UTC

closing