Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 38142 - SELinux Pollicy files for Snort 2.0.6
Summary: SELinux Pollicy files for Snort 2.0.6
Status: RESOLVED TEST-REQUEST
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All All
: High enhancement (vote)
Assignee: Chris PeBenito (RETIRED)
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-01-13 23:55 UTC by Bill McCarty
Modified: 2011-10-30 22:38 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Snort TE file (snort.te,1.30 KB, text/plain)
2004-01-13 23:56 UTC, Bill McCarty 		no flags Details
Snort FC file (snort.fc,341 bytes, text/plain)
2004-01-13 23:57 UTC, Bill McCarty 		no flags Details
SELinux TE file for Snort (snort.te,1.36 KB, text/plain)
2004-01-14 13:17 UTC, Bill McCarty 		no flags Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Bill McCarty 2004-01-13 23:55:40 UTC 
The NSA policy files for Snort specify an incorrect location for the Gentoo executable, and contain several omissions that prevent proper operation. These policy files resolve these problems. They have been tested with Snort 2.0.6 and can be reasonably expected to work with other releases of Snort.
Comment 1 Bill McCarty 2004-01-13 23:56:51 UTC 
Created attachment 23783 [details]
Snort TE file
Comment 2 Bill McCarty 2004-01-13 23:57:23 UTC 
Created attachment 23784 [details]
Snort FC file
Comment 3 Chris PeBenito (RETIRED) gentoo-dev 2004-01-14 12:17:36 UTC 
Hmm, it looks like you could change the log_domain(snort) into a logdir_domain(snort), and then the extra logging lines you added at the bottom can be removed.  Would you test this to make sure?  Otherwise it looks good.
Comment 4 Bill McCarty 2004-01-14 13:17:18 UTC 
Created attachment 23810 [details]
SELinux TE file for Snort

Revised to use logdir_domain(), eliminating need for two allows related to
logging.
Also revised to include permissions necessary for startup via run_init.
Comment 5 Chris PeBenito (RETIRED) gentoo-dev 2004-01-15 13:04:49 UTC 
committed to policy cvs
Comment 6 Chris PeBenito (RETIRED) gentoo-dev 2004-01-16 12:07:16 UTC 
committed to portage