Ubuntu
refpolicy package

Please merge refpolicy 2:0.2.20100524-2 (universe) from Debian unstable (main)

Bug #607149 reported by Angel Abad
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
refpolicy (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

There is new version in Debian to be merged:

 refpolicy (2:0.2.20100524-2) unstable; urgency=low
 .
   * Include tmpreaper in base policy as mountnfs-bootclean.sh and
     mountall-bootclean.sh need to run as tmpreaper_t.
   * Added a new mcsdeleteall attribute for tmpreaper_t so that it can
     delete files and directories regardless of mcs level.
   * Allow perdition netlink_route_socket access.
   * Allow nrpe_t to execute sudo and search /var/spool
     also don't audit capability sys_resource.
   * Allow postfix_local_t to run sendmail for programs like vacation
   * Make the milter module be loaded if the milter-greylist or spamass-milter
     package is installed. Make spamassassin policy optional when using the
     milter module.
   * Added a bunch of fixes from git mostly trivial stuff but also allowed
     bootloader_t to load modules, allowed kismet_t to search home directories,
   * Don't allow cron daemon to search /var/lib/logrotate.
   * Fixed a typo in gitosis.if
   * Commented out the genfscon line in selinux.if for the includes directory,
     now sepolgen-ifgen works without error.

Thanks!

Related branches

lp:ubuntu/maverick/refpolicy
Revision history for this message
Angel Abad (angelabad) wrote :
Changed in refpolicy (Ubuntu):
assignee: nobody → Angel Abad (angelabad)
status: New → In Progress
Revision history for this message
Angel Abad (angelabad) wrote :
Changed in refpolicy (Ubuntu):
assignee: Angel Abad (angelabad) → nobody
status: In Progress → Confirmed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package refpolicy - 2:0.2.20100524-2ubuntu1

---------------
refpolicy (2:0.2.20100524-2ubuntu1) maverick; urgency=low

  * Merge from debian unstable (LP: #607149). Remaining changes:
    - debian/control: drop "selinux" conflict (Debian bug 576598).

refpolicy (2:0.2.20100524-2) unstable; urgency=low

  * Include tmpreaper in base policy as mountnfs-bootclean.sh and
    mountall-bootclean.sh need to run as tmpreaper_t.
  * Added a new mcsdeleteall attribute for tmpreaper_t so that it can
    delete files and directories regardless of mcs level.
  * Allow perdition netlink_route_socket access.
  * Allow nrpe_t to execute sudo and search /var/spool
    also don't audit capability sys_resource.
  * Allow postfix_local_t to run sendmail for programs like vacation
  * Make the milter module be loaded if the milter-greylist or spamass-milter
    package is installed. Make spamassassin policy optional when using the
    milter module.
  * Added a bunch of fixes from git mostly trivial stuff but also allowed
    bootloader_t to load modules, allowed kismet_t to search home directories,
  * Don't allow cron daemon to search /var/lib/logrotate.
  * Fixed a typo in gitosis.if
  * Commented out the genfscon line in selinux.if for the includes directory,
    now sepolgen-ifgen works without error.
 -- Angel Abad <email address hidden> Fri, 09 Jul 2010 06:30:26 +0100

Changed in refpolicy (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.