/[gentoo-x86]/sec-policy/selinux-base-policy/ChangeLog
Gentoo

Contents of /sec-policy/selinux-base-policy/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1.22 - (show annotations) (download)
Sun May 16 01:22:22 2004 UTC (9 years ago) by pebenito
Branch: MAIN
Changes since 1.21: +5 -1 lines 
mark stable
1 # ChangeLog for sec-policy/selinux-base-policy
2 # Copyright 2000-2004 Gentoo Technologies, Inc.; Distributed under the GPL v2
3 # $Header: /home/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.21 2004/05/10 01:38:36 pebenito Exp $
4
5 15 May 2004; Chris PeBenito <pebenito@gentoo.org>
6 selinux-base-policy-20040509.ebuild:
7 Mark stable.
8
9 *selinux-base-policy-20040509 (09 May 2004)
10
11 09 May 2004; Chris PeBenito <pebenito@gentoo.org>
12 +selinux-base-policy-20040509.ebuild:
13 A few small cleanups. Make PaX non exec pages macro based on arch. Large
14 portage update, get rid of portage_exec_fetch_t, portage will setexec. Add
15 global_ssp tunable.
16
17 *selinux-base-policy-20040418 (18 Apr 2004)
18
19 18 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
20 +selinux-base-policy-20040418.ebuild:
21 New release for checkpolicy 1.10
22
23 *selinux-base-policy-20040414 (14 Apr 2004)
24
25 14 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
26 -selinux-base-policy-20040408.ebuild, +selinux-base-policy-20040414.ebuild:
27 Minor updates
28
29 *selinux-base-policy-20040408 (08 Apr 2004)
30
31 08 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
32 selinux-base-policy-20040408.ebuild:
33 New update. Users.fc is now deprecated, as the contexts for user directories
34 is now automatically generated. Portage fetching of distfiles now has a
35 subdomain, for dropping priviledges.
36
37 28 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
38 selinux-base-policy-20040225.ebuild:
39 Mark stable.
40
41 *selinux-base-policy-20040225 (25 Feb 2004)
42
43 25 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
44 selinux-base-policy-20040225.ebuild:
45 New support for PaX ACL hooks. Addition of tunable.te for configurable policy
46 options. Rewrite of portage.te. Now auto-transition for sysadm is default, can
47 reenable portage_r by tunable.te. Makefile update from NSA CVS.
48
49 *selinux-base-policy-20040209 (09 Feb 2004)
50
51 09 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
52 selinux-base-policy-20040209.ebuild:
53 Minor revision to add XFS labeling and policy for integrated
54 runscript-run_init.
55
56 07 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
57 selinux-base-policy-20040202.ebuild:
58 Mark x86 stable.
59
60 *selinux-base-policy-20040202 (02 Feb 2004)
61
62 02 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
63 selinux-base-policy-20040202.ebuild:
64 A few misc fixes. Allow portage to update bootloader code, such as in lilo or
65 grub postinst. This requires checkpolicy 1.4-r1.
66
67 *selinux-base-policy-20031225 (25 Dec 2003)
68
69 25 Dec 2003; Chris PeBenito <pebenito@gentoo.org>
70 selinux-base-policy-20031225.ebuild:
71 New release, with merged NSA 1.4 policy. One critical note, this policy
72 requires pam 0.77. Much work has been done to minimize access to /etc/shadow,
73 and one requirement is in the patch for pam 0.77. If you do not use this pam
74 version or newer, you will be unable to authenticate in enforcing. Since
75 devfs no longer is usable in SELinux, it's policy has been removed. You
76 should merge the changes, remove the devfsd policy (devfsd.te and devfsd.fc),
77 load the policy, and relabel.
78
79 27 Nov 2003; Chris PeBenito <pebenito@gentoo.org>
80 selinux-base-policy-20031010-r1.ebuild:
81 Mark stable. Add build USE flag for stage building.
82
83 *selinux-base-policy-20031010-r1 (12 Nov 2003)
84
85 12 Nov 2003; Chris PeBenito <pebenito@gentoo.org>
86 selinux-base-policy-20031010-r1.ebuild,
87 files/selinux-base-policy-20031010-cvs.diff:
88 Add fixes from policy cvs for compilers, so non x86 and ppc compilers can
89 work. Also portage update as a side effect of updated setfiles code in
90 portage, from bug 31748.
91
92 28 Oct 2003; Chris PeBenito <pebenito@gentoo.org>
93 selinux-base-policy-20031010.ebuild:
94 Mark stable
95
96 *selinux-base-policy-20031010 (10 Oct 2003)
97
98 10 Oct 2003; Chris PeBenito <pebenito@gentoo.org>
99 selinux-base-policy-20031010.ebuild:
100 New release for new API. Massive cleanups all over the place.
101
102 *selinux-base-policy-20030817 (17 Aug 2003)
103
104 17 Aug 2003; Chris PeBenito <pebenito@gentoo.org>
105 selinux-base-policy-20030817.ebuild:
106 Initial commit of new API policy
107
108 10 Aug 2003; Chris PeBenito <pebenito@gentoo.org>
109 selinux-base-policy-20030729-r1.ebuild:
110 Mark stable
111
112 *selinux-base-policy-20030729-r1 (31 Jul 2003)
113
114 31 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
115 selinux-base-policy-20030729-r1.ebuild:
116 New rev that handles an empty POLICYDIR sanely.
117
118 *selinux-base-policy-20030729 (29 Jul 2003)
119
120 29 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
121 selinux-base-policy-20030729.ebuild:
122 Make the ebuild use POLICYDIR. Important fix so portage can load policy so
123 selinux-policy.eclass works. update_modules_t cleanup. Fix for an access when
124 merging baselayout.
125
126 *selinux-base-policy-20030720 (20 Jul 2003)
127
128 20 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
129 selinux-base-policy-20030720.ebuild:
130 Many fixes, including the syslog fix. File contexts have changed, so a relabel
131 is needed. You may encounter problems relabeling /usr/portage, as its file
132 context has changed, as files should not have the same type as a domain.
133 Relabelling in permissive will fix this, or temporarily give portage_t a
134 file_type attribute. Tightened the can_exec_any() macro. Moved staff.fc to
135 users.fc, since all users with SELinux identities should have their home
136 directories have the correct identity, not the generic identity.
137
138 06 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
139 selinux-base-policy-20030604.ebuild:
140 Mark stable
141
142 *selinux-base-policy-20030604 (04 Jun 2003)
143
144 04 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
145 selinux-base-policy-20030604.ebuild:
146 Fix broken 20030603
147
148 04 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
149 selinux-base-policy-20030603.ebuild:
150 Pulling 20030603, as there are problems, 20030604 later today
151
152 *selinux-base-policy-20030603 (03 Jun 2003)
153
154 03 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
155 selinux-base-policy-20030603.ebuild:
156 Numerous various fixes. Added staff role. Removed ipsec, gpm and gpg policies
157 as they are not appropriate for the base policy, and untested.
158
159 *selinux-base-policy-20030522 (22 May 2003)
160
161 22 May 2003; Chris PeBenito <pebenito@gentoo.org>
162 selinux-base-policy-20030522.ebuild:
163 The policy is in pretty good shape now. I've been able to run in enforcing mode
164 with little problem. I've also been able to successfully merge and unmerge
165 packages in enforcing mode, with few exceptions (why does mysql need to run ps
166 during configure?).
167
168 *selinux-base-policy-20030514 (14 May 2003)
169
170 14 May 2003; Chris PeBenito <pebenito@gentoo.org>
171 selinux-base-policy-20030514.ebuild:
172 Many improvements in many areas. Of note, rlogind policies were removed. Klogd
173 is being merged into syslogd. The portage policy is much more complete, but
174 still needs work. Its suggested that all changes be merged in, policy
175 reloaded, then relabel.
176
177 *selinux-base-policy-20030419 (19 Apr 2003)
178
179 23 Apr 2003; Chris PeBenito <pebenito@gentoo.org>
180 selinux-base-policy-20030419.ebuild:
181 Marking stable for selinux-small stable usage
182
183 19 Apr 2003; Chris PeBenito <pebenito@gentoo.org> Manifest,
184 selinux-base-policy-20030419.ebuild:
185 Initial commit. Base policies for SELinux, with Gentoo-specifics
186
  ViewVC Help
Powered by ViewVC 1.1.13