/[gentoo-x86]/sec-policy/selinux-base-policy/ChangeLog
Gentoo

Contents of /sec-policy/selinux-base-policy/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.33 - (show annotations) (download)
Thu Jan 20 01:00:48 2005 UTC (9 years, 8 months ago) by pebenito
Branch: MAIN
Changes since 1.32: +6 -2 lines
mark stable
(Portage version: 2.0.51-r13)

1 # ChangeLog for sec-policy/selinux-base-policy
2 # Copyright 2000-2005 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.32 2004/11/24 01:26:55 pebenito Exp $
4
5 19 Jan 2005; Chris PeBenito <pebenito@gentoo.org>
6 selinux-base-policy-20041123.ebuild:
7 Mark stable.
8
9 *selinux-base-policy-20041123 (23 Nov 2004)
10
11 23 Nov 2004; Chris PeBenito <pebenito@gentoo.org>
12 +selinux-base-policy-20041123.ebuild:
13 New release with 1.18 merge.
14
15 *selinux-base-policy-20041023 (23 Oct 2004)
16
17 23 Oct 2004; Chris PeBenito <pebenito@gentoo.org>
18 +selinux-base-policy-20041023.ebuild:
19 New release with 1.16 merge. Tcpd and inetd have been deprecated since they
20 are not in the base system anymore, and probably no one uses them anyway.
21
22 *selinux-base-policy-20040906 (06 Sep 2004)
23
24 06 Sep 2004; Chris PeBenito <pebenito@gentoo.org>
25 +selinux-base-policy-20040906.ebuild:
26 New release with 1.14 merge, which has policy 18 (fine-grained netlink)
27 features.
28
29 05 Sep 2004; Chris PeBenito <pebenito@gentoo.org>
30 selinux-base-policy-20040225.ebuild, -selinux-base-policy-20040509.ebuild,
31 -selinux-base-policy-20040604.ebuild, selinux-base-policy-20040629.ebuild,
32 selinux-base-policy-20040702.ebuild:
33 Remove old builds, switch to epause and ebeep in remaining builds.
34
35 *selinux-base-policy-20040702 (02 Jul 2004)
36
37 02 Jul 2004; Chris PeBenito <pebenito@gentoo.org>
38 +selinux-base-policy-20040702.ebuild:
39 Same as 20040629, except with updated flask headers, which will come out in
40 2.6.8.
41
42 *selinux-base-policy-20040629 (29 Jun 2004)
43
44 29 Jun 2004; Chris PeBenito <pebenito@gentoo.org>
45 +selinux-base-policy-20040629.ebuild:
46 Large sysadmfile cleanup: disable admin_separation to give sysadm_r back its
47 ablility to modify all files. Minor fixes: portage_r works again, syslog-ng
48 breakage fixed, put back manual PaX policy for pageexec/segmexec.
49
50 16 Jun 2004; Chris PeBenito <pebenito@gentoo.org>
51 selinux-base-policy-20040604.ebuild:
52 Mark stable.
53
54 10 Jun 2004; Chris PeBenito <pebenito@gentoo.org>
55 selinux-base-policy-20040225.ebuild, selinux-base-policy-20040509.ebuild,
56 selinux-base-policy-20040604.ebuild:
57 Add src_compile() stub
58
59 *selinux-base-policy-20040604 (04 Jun 2004)
60
61 04 Jun 2004; Chris PeBenito <pebenito@gentoo.org>
62 +selinux-base-policy-20040604.ebuild:
63 New release including 1.12 NSA policy, and experimental sesandbox.
64
65 15 May 2004; Chris PeBenito <pebenito@gentoo.org>
66 selinux-base-policy-20040509.ebuild:
67 Mark stable.
68
69 *selinux-base-policy-20040509 (09 May 2004)
70
71 09 May 2004; Chris PeBenito <pebenito@gentoo.org>
72 +selinux-base-policy-20040509.ebuild:
73 A few small cleanups. Make PaX non exec pages macro based on arch. Large
74 portage update, get rid of portage_exec_fetch_t, portage will setexec. Add
75 global_ssp tunable.
76
77 *selinux-base-policy-20040418 (18 Apr 2004)
78
79 18 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
80 +selinux-base-policy-20040418.ebuild:
81 New release for checkpolicy 1.10
82
83 *selinux-base-policy-20040414 (14 Apr 2004)
84
85 14 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
86 -selinux-base-policy-20040408.ebuild, +selinux-base-policy-20040414.ebuild:
87 Minor updates
88
89 *selinux-base-policy-20040408 (08 Apr 2004)
90
91 08 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
92 selinux-base-policy-20040408.ebuild:
93 New update. Users.fc is now deprecated, as the contexts for user directories
94 is now automatically generated. Portage fetching of distfiles now has a
95 subdomain, for dropping priviledges.
96
97 28 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
98 selinux-base-policy-20040225.ebuild:
99 Mark stable.
100
101 *selinux-base-policy-20040225 (25 Feb 2004)
102
103 25 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
104 selinux-base-policy-20040225.ebuild:
105 New support for PaX ACL hooks. Addition of tunable.te for configurable policy
106 options. Rewrite of portage.te. Now auto-transition for sysadm is default, can
107 reenable portage_r by tunable.te. Makefile update from NSA CVS.
108
109 *selinux-base-policy-20040209 (09 Feb 2004)
110
111 09 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
112 selinux-base-policy-20040209.ebuild:
113 Minor revision to add XFS labeling and policy for integrated
114 runscript-run_init.
115
116 07 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
117 selinux-base-policy-20040202.ebuild:
118 Mark x86 stable.
119
120 *selinux-base-policy-20040202 (02 Feb 2004)
121
122 02 Feb 2004; Chris PeBenito <pebenito@gentoo.org>
123 selinux-base-policy-20040202.ebuild:
124 A few misc fixes. Allow portage to update bootloader code, such as in lilo or
125 grub postinst. This requires checkpolicy 1.4-r1.
126
127 *selinux-base-policy-20031225 (25 Dec 2003)
128
129 25 Dec 2003; Chris PeBenito <pebenito@gentoo.org>
130 selinux-base-policy-20031225.ebuild:
131 New release, with merged NSA 1.4 policy. One critical note, this policy
132 requires pam 0.77. Much work has been done to minimize access to /etc/shadow,
133 and one requirement is in the patch for pam 0.77. If you do not use this pam
134 version or newer, you will be unable to authenticate in enforcing. Since
135 devfs no longer is usable in SELinux, it's policy has been removed. You
136 should merge the changes, remove the devfsd policy (devfsd.te and devfsd.fc),
137 load the policy, and relabel.
138
139 27 Nov 2003; Chris PeBenito <pebenito@gentoo.org>
140 selinux-base-policy-20031010-r1.ebuild:
141 Mark stable. Add build USE flag for stage building.
142
143 *selinux-base-policy-20031010-r1 (12 Nov 2003)
144
145 12 Nov 2003; Chris PeBenito <pebenito@gentoo.org>
146 selinux-base-policy-20031010-r1.ebuild,
147 files/selinux-base-policy-20031010-cvs.diff:
148 Add fixes from policy cvs for compilers, so non x86 and ppc compilers can
149 work. Also portage update as a side effect of updated setfiles code in
150 portage, from bug 31748.
151
152 28 Oct 2003; Chris PeBenito <pebenito@gentoo.org>
153 selinux-base-policy-20031010.ebuild:
154 Mark stable
155
156 *selinux-base-policy-20031010 (10 Oct 2003)
157
158 10 Oct 2003; Chris PeBenito <pebenito@gentoo.org>
159 selinux-base-policy-20031010.ebuild:
160 New release for new API. Massive cleanups all over the place.
161
162 *selinux-base-policy-20030817 (17 Aug 2003)
163
164 17 Aug 2003; Chris PeBenito <pebenito@gentoo.org>
165 selinux-base-policy-20030817.ebuild:
166 Initial commit of new API policy
167
168 10 Aug 2003; Chris PeBenito <pebenito@gentoo.org>
169 selinux-base-policy-20030729-r1.ebuild:
170 Mark stable
171
172 *selinux-base-policy-20030729-r1 (31 Jul 2003)
173
174 31 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
175 selinux-base-policy-20030729-r1.ebuild:
176 New rev that handles an empty POLICYDIR sanely.
177
178 *selinux-base-policy-20030729 (29 Jul 2003)
179
180 29 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
181 selinux-base-policy-20030729.ebuild:
182 Make the ebuild use POLICYDIR. Important fix so portage can load policy so
183 selinux-policy.eclass works. update_modules_t cleanup. Fix for an access when
184 merging baselayout.
185
186 *selinux-base-policy-20030720 (20 Jul 2003)
187
188 20 Jul 2003; Chris PeBenito <pebenito@gentoo.org>
189 selinux-base-policy-20030720.ebuild:
190 Many fixes, including the syslog fix. File contexts have changed, so a relabel
191 is needed. You may encounter problems relabeling /usr/portage, as its file
192 context has changed, as files should not have the same type as a domain.
193 Relabelling in permissive will fix this, or temporarily give portage_t a
194 file_type attribute. Tightened the can_exec_any() macro. Moved staff.fc to
195 users.fc, since all users with SELinux identities should have their home
196 directories have the correct identity, not the generic identity.
197
198 06 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
199 selinux-base-policy-20030604.ebuild:
200 Mark stable
201
202 *selinux-base-policy-20030604 (04 Jun 2003)
203
204 04 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
205 selinux-base-policy-20030604.ebuild:
206 Fix broken 20030603
207
208 04 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
209 selinux-base-policy-20030603.ebuild:
210 Pulling 20030603, as there are problems, 20030604 later today
211
212 *selinux-base-policy-20030603 (03 Jun 2003)
213
214 03 Jun 2003; Chris PeBenito <pebenito@gentoo.org>
215 selinux-base-policy-20030603.ebuild:
216 Numerous various fixes. Added staff role. Removed ipsec, gpm and gpg policies
217 as they are not appropriate for the base policy, and untested.
218
219 *selinux-base-policy-20030522 (22 May 2003)
220
221 22 May 2003; Chris PeBenito <pebenito@gentoo.org>
222 selinux-base-policy-20030522.ebuild:
223 The policy is in pretty good shape now. I've been able to run in enforcing mode
224 with little problem. I've also been able to successfully merge and unmerge
225 packages in enforcing mode, with few exceptions (why does mysql need to run ps
226 during configure?).
227
228 *selinux-base-policy-20030514 (14 May 2003)
229
230 14 May 2003; Chris PeBenito <pebenito@gentoo.org>
231 selinux-base-policy-20030514.ebuild:
232 Many improvements in many areas. Of note, rlogind policies were removed. Klogd
233 is being merged into syslogd. The portage policy is much more complete, but
234 still needs work. Its suggested that all changes be merged in, policy
235 reloaded, then relabel.
236
237 *selinux-base-policy-20030419 (19 Apr 2003)
238
239 23 Apr 2003; Chris PeBenito <pebenito@gentoo.org>
240 selinux-base-policy-20030419.ebuild:
241 Marking stable for selinux-small stable usage
242
243 19 Apr 2003; Chris PeBenito <pebenito@gentoo.org> Manifest,
244 selinux-base-policy-20030419.ebuild:
245 Initial commit. Base policies for SELinux, with Gentoo-specifics

  ViewVC Help
Powered by ViewVC 1.1.20