---------------------------------------------------------------------Fedora Update Notification
FEDORA-2005-814
2005-08-29
---------------------------------------------------------------------Product     : Fedora Core 4
Name        : selinux-policy-targeted
Version     : 1.25.4                      
Release     : 10                  
Summary     : SELinux targeted policy configuration
Description :
Security-enhanced Linux is a patch of the Linux® kernel and a number
of utilities with enhanced security functionality designed to add
mandatory access controls to Linux.  The Security-enhanced Linux
kernel contains new architectural components originally developed to
improve the security of the Flask operating system. These
architectural components provide general support for the enforcement
of many kinds of mandatory access control policies, including those
based on the concepts of Type Enforcement®, Role-based Access
Control, and Multi-level Security.

This package contains the SELinux example policy configuration along
with the Flask configuration information and the application
configuration files.

---------------------------------------------------------------------* Thu Aug 25 2005 Dan Walsh  1.25.4-10
- Bump for FC4

* Thu Aug 25 2005 Dan Walsh  1.25.4-9
- Allow i18n_input to read homedirs
- Remove i18n_input from targeted

* Mon Aug 22 2005 Dan Walsh  1.25.4-8
- Apply russell's cleanups

* Mon Aug 22 2005 Dan Walsh  1.25.4-7
- Bump for FC-4

* Mon Aug 22 2005 Dan Walsh  1.25.4-6
- Fix /var/lib/yp/* file_context

* Mon Aug 22 2005 Dan Walsh  1.25.4-5
- Add capifs 
- Add roundup policy
- fix gdm

* Wed Aug 17 2005 Dan Walsh  1.25.4-4.1
- Trying out postfix.te

* Wed Aug 17 2005 Dan Walsh  1.25.4-4
- Add more access for amanda
- Allow dovecot to create files in mail_spool_t

* Tue Aug 16 2005 Dan Walsh  1.25.4-3
- add can_access_pty macro
- Add nsswitch_macro for lots of ldap fixes

* Sun Aug 14 2005 Dan Walsh  1.25.4-2
- Support for policy.20 and policy.19

* Thu Aug 11 2005 Dan Walsh  1.25.4-1
-Update to latest from NSA
	* Merged small patches from Russell Coker for the restorecon,
	kudzu, lvm, radvd, and spamassasin policies.
	* Added fs_use_trans rule for mqueue from Mark Gebhart to support
	the work he has done on providing SELinux support for mqueue.
	* Merged a patch from Dan Walsh. Removes the user_can_mount
	tunable.  Adds disable_evolution_trans and disable_thunderbird_trans
	booleans.  Adds the nscd_client_domain attribute to insmod_t.
	Removes the user_ping boolean from targeted policy.  Adds
	hugetlbfs, inotifyfs, and mqueue filesystems to genfs_contexts.
	Adds the isakmp_port for vpnc.  Creates the pptp daemon domain.
	Allows getty to run sbin_t for pppd.  Allows initrc to write to
	default_t for booting.  Allows Hotplug_t sys_rawio for prism54
	card at boot.  Other minor fixes.

* Mon Aug  8 2005 Dan Walsh  1.25.3-15
- Bump for FC4

* Mon Aug  8 2005 Dan Walsh  1.25.3-14
- Allow passwd to read sysctl
- Fix fsadm for zip drives

* Fri Aug  5 2005 Dan Walsh  1.25.3-13
- Allow cvs to use kerberos
- Allow sasauthd to use mysql


---------------------------------------------------------------------This update can be downloaded from:
  
da96c2699a3aa3adc1fc8b95e8f17e73  SRPMS/selinux-policy-targeted-1.25.4-10.src.rpm
24856d4b565a183fef5ef37c1f2e925f  x86_64/selinux-policy-targeted-1.25.4-10.noarch.rpm
76bca90e7653efa77960c3bfd57b288d  x86_64/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm
24856d4b565a183fef5ef37c1f2e925f  i386/selinux-policy-targeted-1.25.4-10.noarch.rpm
76bca90e7653efa77960c3bfd57b288d  i386/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
----------------------------------------------------------------------- 
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

Fedora Core 4 Update: selinux-policy-targeted-1.25.4-10

August 29, 2005
Updated package.

Summary

Security-enhanced Linux is a patch of the Linux® kernel and a number

of utilities with enhanced security functionality designed to add

mandatory access controls to Linux. The Security-enhanced Linux

kernel contains new architectural components originally developed to

improve the security of the Flask operating system. These

architectural components provide general support for the enforcement

of many kinds of mandatory access control policies, including those

based on the concepts of Type Enforcement®, Role-based Access

Control, and Multi-level Security.

This package contains the SELinux example policy configuration along

with the Flask configuration information and the application

configuration files.

- Bump for FC4

* Thu Aug 25 2005 Dan Walsh 1.25.4-9

- Allow i18n_input to read homedirs

- Remove i18n_input from targeted

* Mon Aug 22 2005 Dan Walsh 1.25.4-8

- Apply russell's cleanups

* Mon Aug 22 2005 Dan Walsh 1.25.4-7

- Bump for FC-4

* Mon Aug 22 2005 Dan Walsh 1.25.4-6

- Fix /var/lib/yp/* file_context

* Mon Aug 22 2005 Dan Walsh 1.25.4-5

- Add capifs

- Add roundup policy

- fix gdm

* Wed Aug 17 2005 Dan Walsh 1.25.4-4.1

- Trying out postfix.te

* Wed Aug 17 2005 Dan Walsh 1.25.4-4

- Add more access for amanda

- Allow dovecot to create files in mail_spool_t

* Tue Aug 16 2005 Dan Walsh 1.25.4-3

- add can_access_pty macro

- Add nsswitch_macro for lots of ldap fixes

* Sun Aug 14 2005 Dan Walsh 1.25.4-2

- Support for policy.20 and policy.19

* Thu Aug 11 2005 Dan Walsh 1.25.4-1

-Update to latest from NSA

* Merged small patches from Russell Coker for the restorecon,

kudzu, lvm, radvd, and spamassasin policies.

* Added fs_use_trans rule for mqueue from Mark Gebhart to support

the work he has done on providing SELinux support for mqueue.

* Merged a patch from Dan Walsh. Removes the user_can_mount

tunable. Adds disable_evolution_trans and disable_thunderbird_trans

booleans. Adds the nscd_client_domain attribute to insmod_t.

Removes the user_ping boolean from targeted policy. Adds

hugetlbfs, inotifyfs, and mqueue filesystems to genfs_contexts.

Adds the isakmp_port for vpnc. Creates the pptp daemon domain.

Allows getty to run sbin_t for pppd. Allows initrc to write to

default_t for booting. Allows Hotplug_t sys_rawio for prism54

card at boot. Other minor fixes.

* Mon Aug 8 2005 Dan Walsh 1.25.3-15

- Bump for FC4

* Mon Aug 8 2005 Dan Walsh 1.25.3-14

- Allow passwd to read sysctl

- Fix fsadm for zip drives

* Fri Aug 5 2005 Dan Walsh 1.25.3-13

- Allow cvs to use kerberos

- Allow sasauthd to use mysql

da96c2699a3aa3adc1fc8b95e8f17e73 SRPMS/selinux-policy-targeted-1.25.4-10.src.rpm

24856d4b565a183fef5ef37c1f2e925f x86_64/selinux-policy-targeted-1.25.4-10.noarch.rpm

76bca90e7653efa77960c3bfd57b288d x86_64/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm

24856d4b565a183fef5ef37c1f2e925f i386/selinux-policy-targeted-1.25.4-10.noarch.rpm

76bca90e7653efa77960c3bfd57b288d i386/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list mailing list

fedora-announce-list@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-announce-list

FEDORA-2005-814 2005-08-29 Name : selinux-policy-targeted Version : 1.25.4 Release : 10 Summary : SELinux targeted policy configuration Description : Security-enhanced Linux is a patch of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. This package contains the SELinux example policy configuration along with the Flask configuration information and the application configuration files. - Bump for FC4 * Thu Aug 25 2005 Dan Walsh 1.25.4-9 - Allow i18n_input to read homedirs - Remove i18n_input from targeted * Mon Aug 22 2005 Dan Walsh 1.25.4-8 - Apply russell's cleanups * Mon Aug 22 2005 Dan Walsh 1.25.4-7 - Bump for FC-4 * Mon Aug 22 2005 Dan Walsh 1.25.4-6 - Fix /var/lib/yp/* file_context * Mon Aug 22 2005 Dan Walsh 1.25.4-5 - Add capifs - Add roundup policy - fix gdm * Wed Aug 17 2005 Dan Walsh 1.25.4-4.1 - Trying out postfix.te * Wed Aug 17 2005 Dan Walsh 1.25.4-4 - Add more access for amanda - Allow dovecot to create files in mail_spool_t * Tue Aug 16 2005 Dan Walsh 1.25.4-3 - add can_access_pty macro - Add nsswitch_macro for lots of ldap fixes * Sun Aug 14 2005 Dan Walsh 1.25.4-2 - Support for policy.20 and policy.19 * Thu Aug 11 2005 Dan Walsh 1.25.4-1 -Update to latest from NSA * Merged small patches from Russell Coker for the restorecon, kudzu, lvm, radvd, and spamassasin policies. * Added fs_use_trans rule for mqueue from Mark Gebhart to support the work he has done on providing SELinux support for mqueue. * Merged a patch from Dan Walsh. Removes the user_can_mount tunable. Adds disable_evolution_trans and disable_thunderbird_trans booleans. Adds the nscd_client_domain attribute to insmod_t. Removes the user_ping boolean from targeted policy. Adds hugetlbfs, inotifyfs, and mqueue filesystems to genfs_contexts. Adds the isakmp_port for vpnc. Creates the pptp daemon domain. Allows getty to run sbin_t for pppd. Allows initrc to write to default_t for booting. Allows Hotplug_t sys_rawio for prism54 card at boot. Other minor fixes. * Mon Aug 8 2005 Dan Walsh 1.25.3-15 - Bump for FC4 * Mon Aug 8 2005 Dan Walsh 1.25.3-14 - Allow passwd to read sysctl - Fix fsadm for zip drives * Fri Aug 5 2005 Dan Walsh 1.25.3-13 - Allow cvs to use kerberos - Allow sasauthd to use mysql da96c2699a3aa3adc1fc8b95e8f17e73 SRPMS/selinux-policy-targeted-1.25.4-10.src.rpm 24856d4b565a183fef5ef37c1f2e925f x86_64/selinux-policy-targeted-1.25.4-10.noarch.rpm 76bca90e7653efa77960c3bfd57b288d x86_64/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm 24856d4b565a183fef5ef37c1f2e925f i386/selinux-policy-targeted-1.25.4-10.noarch.rpm 76bca90e7653efa77960c3bfd57b288d i386/selinux-policy-targeted-sources-1.25.4-10.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. fedora-announce-list mailing list fedora-announce-list@redhat.com http://www.redhat.com/mailman/listinfo/fedora-announce-list

Change Log

References

Update Instructions

Severity
Name : selinux-policy-targeted
Version : 1.25.4
Release : 10
Summary : SELinux targeted policy configuration

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved