معرفی شرکت ها


selinux-policy-targeted-37.12-2.fc37.noarch.rpm


Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر

توضیحات

SELinux targeted policy
ویژگی مقدار
سیستم عامل Linux
توزیع Fedora 37
مخزن Fedora Server noarch
نام بسته selinux-policy-targeted
نام فایل بسته selinux-policy-targeted-37.12-2.fc37.noarch.rpm
نسخه بسته 37.12
انتشار بسته 2.fc37
معماری بسته noarch
نگهدارنده -
تاریخ ساخت Fri 23 Sep 2022 07
هاست سازنده buildvm-x86-16.iad2.fedoraproject.org
نوع بسته .rpm
آدرس صفحه اصلی https://github.com/fedora-selinux/selinux-policy
مجوز GPLv2+
حجم دانلود 6.7M
حجم نصب 18.008M
SELinux targeted policy package.


جایگزین ها

بسته نسخه معماری مخزن
selinux-policy-targeted-37.19-1.fc37.noarch.rpm 37.19 noarch Fedora Everything
selinux-policy-targeted-37.23-1.fc37.noarch.rpm 37.23 noarch Fedora Everything


نیازمندی

مقدار نام
- /bin/sh
- /bin/sh
- /bin/sh
- /bin/sh
- /bin/sh
= 37.12-2.fc37 config(selinux-policy-targeted)
- coreutils
>= 3.4-1 policycoreutils
= 37.12-2.fc37 selinux-policy
= 37.12-2.fc37 selinux-policy


ارائه دهنده

مقدار نام
= 37.12-2.fc37 config(selinux-policy-targeted)
= 37.12-2.fc37 selinux-policy-any
= 37.12-2.fc37 selinux-policy-targeted


نحوه نصب


نصب پکیج rpm selinux-policy-targeted:

    dnf install selinux-policy-targeted-37.12-2.fc37.noarch.rpm


فایل ها

مسیرها
/etc/selinux/targeted
/etc/selinux/targeted/.policy.sha512
/etc/selinux/targeted/booleans.subs_dist
/etc/selinux/targeted/contexts
/etc/selinux/targeted/contexts/customizable_types
/etc/selinux/targeted/contexts/dbus_contexts
/etc/selinux/targeted/contexts/default_contexts
/etc/selinux/targeted/contexts/default_type
/etc/selinux/targeted/contexts/failsafe_context
/etc/selinux/targeted/contexts/files
/etc/selinux/targeted/contexts/files/file_contexts
/etc/selinux/targeted/contexts/files/file_contexts.bin
/etc/selinux/targeted/contexts/files/file_contexts.homedirs
/etc/selinux/targeted/contexts/files/file_contexts.homedirs.bin
/etc/selinux/targeted/contexts/files/file_contexts.local
/etc/selinux/targeted/contexts/files/file_contexts.local.bin
/etc/selinux/targeted/contexts/files/file_contexts.subs
/etc/selinux/targeted/contexts/files/file_contexts.subs_dist
/etc/selinux/targeted/contexts/files/media
/etc/selinux/targeted/contexts/initrc_context
/etc/selinux/targeted/contexts/lxc_contexts
/etc/selinux/targeted/contexts/openssh_contexts
/etc/selinux/targeted/contexts/removable_context
/etc/selinux/targeted/contexts/securetty_types
/etc/selinux/targeted/contexts/sepgsql_contexts
/etc/selinux/targeted/contexts/snapperd_contexts
/etc/selinux/targeted/contexts/systemd_contexts
/etc/selinux/targeted/contexts/userhelper_context
/etc/selinux/targeted/contexts/users
/etc/selinux/targeted/contexts/users/guest_u
/etc/selinux/targeted/contexts/users/root
/etc/selinux/targeted/contexts/users/staff_u
/etc/selinux/targeted/contexts/users/sysadm_u
/etc/selinux/targeted/contexts/users/unconfined_u
/etc/selinux/targeted/contexts/users/user_u
/etc/selinux/targeted/contexts/users/xguest_u
/etc/selinux/targeted/contexts/virtual_domain_context
/etc/selinux/targeted/contexts/virtual_image_context
/etc/selinux/targeted/contexts/x_contexts
/etc/selinux/targeted/logins
/etc/selinux/targeted/policy
/etc/selinux/targeted/policy/policy.33
/etc/selinux/targeted/setrans.conf
/etc/selinux/targeted/seusers
/usr/share/selinux/targeted
/usr/share/selinux/targeted/base.lst
/usr/share/selinux/targeted/modules-base.lst
/usr/share/selinux/targeted/modules-contrib.lst
/usr/share/selinux/targeted/nonbasemodules.lst
/var/lib/selinux/targeted
... and 1710 more


گزارش تغییرات

تاریخ آخرین تغییر جزئیات
2022-09-23

Update make-rhat-patches.sh file to use the f37 dist-git branch in F37

2022-09-22

nut-upsd: kernel_read_system_state, fs_getattr_cgroup
Add numad the ipc_owner capability
Allow gst-plugin-scanner read virtual memory sysctls
Allow init read/write inherited user fifo files
Update dnssec-trigger policy: setsched, module_request
added policy for systemd-socket-proxyd
Add the new 'cmd' permission to the 'io_uring' class
Allow winbind-rpcd read and write its key ring
Label /run/NetworkManager/no-stub-resolv.conf net_conf_t
Fix typo in comment
Do not run restorecon /etc/NetworkManager/dispatcher.d in mls and minimum

2022-09-14

Allow tor get filesystem attributes
Allow utempter append to login_userdomain stream
Allow login_userdomain accept a stream connection to XDM
Allow login_userdomain write to boltd named pipes
Allow staff_u and user_u users write to bolt pipe
Allow login_userdomain watch various directories
Update rhcd policy for executing additional commands 5
Update rhcd policy for executing additional commands 4
Allow rhcd create rpm hawkey logs with correct label
Allow systemd-gpt-auto-generator to check for empty dirs
Update rhcd policy for executing additional commands 3
Allow journalctl read rhcd fifo files
Update insights-client policy for additional commands execution 5
Allow init remount all file_type filesystems
Confine insights-client systemd unit
Update insights-client policy for additional commands execution 4
Allow pcp pmcd search tracefs and acct_data dirs
Allow httpd read network sysctls
Dontaudit domain map permission on directories
Revert "Allow X userdomains to mmap user_fonts_cache_t dirs"
Revert "Allow xdm_t domain to mmap /var/lib/gdm/.cache/fontconfig BZ(1725509)"
Update insights-client policy for additional commands execution 3
Allow systemd permissions needed for sandboxed services
Add rhcd module
Make dependency on rpm-plugin-selinux unordered

2022-09-02

Allow ipsec_t read/write tpm devices
Allow rhcd execute all executables
Update rhcd policy for executing additional commands 2
Update insights-client policy for additional commands execution 2
Allow sysadm_t read raw memory devices
Allow chronyd send and receive chronyd/ntp client packets
Allow ssh client read kerberos homedir config files
Label /var/log/rhc-worker-playbook with rhcd_var_log_t
Update insights-client policy (auditctl, gpg, journal)
Allow system_cronjob_t domtrans to rpm_script_t
Allow smbd_t process noatsecure permission for winbind_rpcd_t
Update tor_bind_all_unreserved_ports interface
Allow chronyd bind UDP sockets to ptp_event ports.
Allow unconfined and sysadm users transition for /root/.gnupg
Add gpg_filetrans_admin_home_content() interface
Update rhcd policy for executing additional commands
Update insights-client policy for additional commands execution
Add userdom_view_all_users_keys() interface
Allow gpg read and write generic pty type
Allow chronyc read and write generic pty type
Allow system_dbusd ioctl kernel with a unix stream sockets
Allow samba-bgqd to read a printer list
Allow stalld get and set scheduling policy of all domains.
Allow unconfined_t transition to targetclid_home_t

2022-08-11

Allow nm-dispatcher custom plugin dbus chat with nm
Allow nm-dispatcher sendmail plugin get status of systemd services
Allow xdm read the kernel key ring
Allow login_userdomain check status of mount units
Allow postfix/smtp and postfix/virtual read kerberos key table
Allow services execute systemd-notify
Do not allow login_userdomain use sd_notify()
Allow launch-xenstored read filesystem sysctls
Allow systemd-modules-load write to /dev/kmsg and send a message to syslogd
Allow openvswitch fsetid capability
Allow openvswitch use its private tmpfs files and dirs
Allow openvswitch search tracefs dirs
Allow pmdalinux read files on an nfsd filesystem
Allow winbind-rpcd write to winbind pid files
Allow networkmanager to signal unconfined process
Allow samba-bgqd get a printer list
fix(init.fc): Fix section description
Allow fedora-third-party read the passwords file
Remove permissive domain for rhcd_t
Allow pmie read network state information and network sysctls
Revert "Dontaudit domain the fowner capability"
Allow sysadm_t to run bpftool on the userdomain attribute
Add the userdom_prog_run_bpf_userdomain() interface
Allow insights-client rpm named file transitions
Add /var/tmp/insights-archive to insights_client_filetrans_named_content

2022-08-01

Allow sa-update to get init status and start systemd files
Use insights_client_filetrans_named_content
Make default file context match with named transitions
Allow nm-dispatcher tlp plugin send system log messages
Allow nm-dispatcher tlp plugin create and use unix_dgram_socket
Add permissions to manage lnk_files into gnome_manage_home_config
Allow rhsmcertd to read insights config files
Label /etc/insights-client/machine-id
fix(devices.fc): Replace single quote in comment to solve parsing issues
Make NetworkManager_dispatcher_custom_t an unconfined domain

2022-07-23

Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

2022-07-14

Update winbind_rpcd_t
Allow some domains use sd_notify()
Revert "Allow rabbitmq to use systemd notify"
fix(sedoctool.py): Fix syntax warning: "is not" with a literal
Allow nm-dispatcher console plugin manage etc files
Allow networkmanager_dispatcher_plugin list NetworkManager_etc_t dirs
Allow nm-dispatcher console plugin setfscreate
Support using systemd-update-helper in rpm scriptlets
Allow nm-dispatcher winbind plugin read samba config files
Allow domain use userfaultfd over all domains
Allow cups-lpd read network sysctls

2022-06-29

Allow stalld set scheduling policy of kernel threads
Allow targetclid read /var/target files
Allow targetclid read generic SSL certificates (fixed)
Allow firewalld read the contents of the sysfs filesystem
Fix file context pattern for /var/target
Use insights_client_etc_t in insights_search_config()
Allow nm-dispatcher ddclient plugin handle systemd services
Allow nm-dispatcher winbind plugin run smbcontrol
Allow nm-dispatcher custom plugin create and use unix dgram socket
Update samba-dcerpcd policy for kerberos usage 2
Allow keepalived read the contents of the sysfs filesystem
Allow amandad read network sysctls
Allow cups-lpd read network sysctls
Allow kpropd read network sysctls
Update insights_client_filetrans_named_content()
Allow rabbitmq to use systemd notify
Label /var/target with targetd_var_t
Allow targetclid read generic SSL certificates
Update rhcd policy
Allow rhcd search insights configuration directories
Add the kernel_read_proc_files() interface
Require policycoreutils >= 3.4-1
Add a script for enclosing interfaces in ifndef statements
Disable rpm verification on interface_info

2022-06-22

Allow transition to insights_client named content
Add the insights_client_filetrans_named_content() interface
Update policy for insights-client to run additional commands 3
Allow dhclient manage pid files used by chronyd
Allow stalld get scheduling policy of kernel threads
Allow samba-dcerpcd work with sssd
Allow dlm_controld send a null signal to a cluster daemon
Allow ksmctl create hardware state information files
Allow winbind_rpcd_t connect to self over a unix_stream_socket
Update samba-dcerpcd policy for kerberos usage
Allow insights-client execute its private memfd: objects
Update policy for insights-client to run additional commands 2
Use insights_client_tmp_t instead of insights_client_var_tmp_t
Change space indentation to tab in insights-client
Use socket permissions sets in insights-client
Update policy for insights-client to run additional commands
Change rpm_setattr_db_files() to use a pattern
Allow init_t to rw insights_client unnamed pipe
Add rpm setattr db files macro
Fix insights client
Update kernel_read_unix_sysctls() for sysctl_net_unix_t handling
Allow rabbitmq to access its private memfd: objects
Update policy for samba-dcerpcd
Allow stalld setsched and sys_nice

2022-06-07

Allow auditd_t noatsecure for a transition to audisp_remote_t
Allow ctdbd nlmsg_read on netlink_tcpdiag_socket
Allow pcp_domain execute its private memfd: objects
Add support for samba-dcerpcd
Add policy for wireguard
Confine targetcli
Allow systemd work with install_t unix stream sockets
Allow iscsid the sys_ptrace userns capability
Allow xdm connect to unconfined_service_t over a unix stream socket

2022-05-27

Allow nm-dispatcher custom plugin execute systemctl
Allow nm-dispatcher custom plugin dbus chat with nm
Allow nm-dispatcher custom plugin create and use udp socket
Allow nm-dispatcher custom plugin create and use netlink_route_socket
Use create_netlink_socket_perms in netlink_route_socket class permissions
Add support for nm-dispatcher sendmail scripts
Allow sslh net_admin capability
Allow insights-client manage gpg admin home content
Add the gpg_manage_admin_home_content() interface
Allow rhsmcertd create generic log files
Update logging_create_generic_logs() to use create_files_pattern()
Label /var/cache/insights with insights_client_cache_t
Allow insights-client search gconf homedir
Allow insights-client create and use unix_dgram_socket
Allow blueman execute its private memfd: files
Move the chown call into make-srpm.sh

2022-05-06

Use the networkmanager_dispatcher_plugin attribute in allow rules
Make a custom nm-dispatcher plugin transition
Label port 4784/tcp and 4784/udp with bfd_multi
Allow systemd watch and watch_reads user ptys
Allow sblim-gatherd the kill capability
Label more vdsm utils with virtd_exec_t
Add ksm service to ksmtuned
Add rhcd policy
Dontaudit guest attempts to dbus chat with systemd domains
Dontaudit guest attempts to dbus chat with system bus types
Use a named transition in systemd_hwdb_manage_config()
Add default fc specifications for patterns in /opt
Add the files_create_etc_files() interface
Allow nm-dispatcher console plugin create and write files in /etc
Allow nm-dispatcher console plugin transition to the setfiles domain
Allow more nm-dispatcher plugins append to init stream sockets
Allow nm-dispatcher tlp plugin dbus chat with nm
Reorder networkmanager_dispatcher_plugin_template() calls
Allow svirt connectto virtlogd
Allow blueman map its private memfd: files
Allow sysadm user execute init scripts with a transition
Allow sblim-sfcbd connect to sblim-reposd stream
Allow keepalived_unconfined_script_t dbus chat with init
Run restorecon with "-i" not to report errors

2022-05-02

Fix users for SELinux userspace 3.4
Label /var/run/machine-id as machineid_t
Add stalld to modules.conf
Use files_tmpfs_file() for rhsmcertd_tmpfs_t
Allow blueman read/write its private memfd: objects
Allow insights-client read rhnsd config files
Allow insights-client create_socket_perms for tcp/udp sockets

2022-04-26

Allow nm-dispatcher chronyc plugin append to init stream sockets
Allow tmpreaper the sys_ptrace userns capability
Label /usr/libexec/vdsm/supervdsmd and vdsmd with virtd_exec_t
Allow nm-dispatcher tlp plugin read/write the wireless device
Allow nm-dispatcher tlp plugin append to init socket
Allow nm-dispatcher tlp plugin be client of a system bus
Allow nm-dispatcher list its configuration directory
Ecryptfs-private support
Allow colord map /var/lib directories
Allow ntlm_auth read the network state information
Allow insights-client search rhnsd configuration directory

2022-04-21

Add support for nm-dispatcher tlp-rdw scripts
Update github actions to satisfy git 2.36 stricter rules
New policy for stalld
Allow colord read generic files in /var/lib
Allow xdm mounton user temporary socket files
Allow systemd-gpt-auto-generator create and use netlink_kobject_uevent_socket
Allow sssd domtrans to pkcs_slotd_t
Allow keepalived setsched and sys_nice
Allow xdm map generic files in /var/lib
Allow xdm read generic symbolic links in /var/lib
Allow pppd create a file in the locks directory
Add file map permission to lpd_manage_spool() interface
Allow system dbus daemon watch generic directories in /var/lib
Allow pcscd the sys_ptrace userns capability
Add the corecmd_watch_bin_dirs() interface