9ba137 * Mon Jul 23 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.0-12

Authored and Committed by Miroslav Grepl 12 years ago
    * Mon Jul 23 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.0-12
    - Add interface to dontaudit getattr access on sysctls
    - Allow sshd to execute /bin/login
    - Looks like xdm is recreating the xdm directory in ~/.cache/ on login
    - Allow syslog to use the leaked kernel_t unix_dgram_socket from system-jou
    -  Fix semanage to work with unconfined domain disabled on F18
    - Dontaudit attempts by mozilla plugins to getattr on all kernel sysctls
    - Virt seems to be using lock files
    - Dovecot seems to be searching directories of every mountpoint
    - Allow jockey to read random/urandom, execute shell and install third-part
    - Add aditional params to allow cachedfiles to manage its content
    - gpg agent needs to read /dev/random
    - The kernel hands an svirt domains /SYSxxxxx which is a tmpfs that httpd w
    - Add a bunch of dontaudit rules to quiet svirt_lxc domains
    - Additional perms needed to run svirt_lxc domains
    - Allow cgclear to read cgconfig
    - Allow sys_ptrace capability for snmp
    - Allow freshclam to read /proc
    - Allow procmail to manage /home/user/Maildir content
    - Allow NM to execute wpa_cli
    - Allow amavis to read clamd system state
    - Regenerate man page
    
        
file modified
+1 -1
file modified
+7695 -4843
file modified
+482 -189
file modified
+24 -1