diff options
author | Sven Vermeulen <sven.vermeulen@siphos.be> | 2013-05-01 22:16:07 +0200 |
---|---|---|
committer | Sven Vermeulen <sven.vermeulen@siphos.be> | 2013-05-01 22:16:07 +0200 |
commit | cbb10f8faf5d4cb08763d03742f14e4e71372a3b (patch) | |
tree | 1c11ceca25c769c459198f66c775288af266734e | |
parent | Update policy with suggestions by dgrift (diff) | |
download | hardened-refpolicy-cbb10f8faf5d4cb08763d03742f14e4e71372a3b.tar.gz hardened-refpolicy-cbb10f8faf5d4cb08763d03742f14e4e71372a3b.tar.bz2 hardened-refpolicy-cbb10f8faf5d4cb08763d03742f14e4e71372a3b.zip |
Use auth_use_nsswitch instead of files_read_etc_files
Since the need for reading etc files was for the nsswitch.conf file, we need to
use auth_use_nsswitch as nsswitch might result (depending on the users'
configuration) in more privilege access needs (such as LDAP connectivity).
-rw-r--r-- | policy/modules/contrib/minidlna.te | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/policy/modules/contrib/minidlna.te b/policy/modules/contrib/minidlna.te index d3a5978c..e99e5f97 100644 --- a/policy/modules/contrib/minidlna.te +++ b/policy/modules/contrib/minidlna.te @@ -97,9 +97,10 @@ corenet_sendrecv_trivnet1_client_packets(minidlna_t) corenet_sendrecv_trivnet1_server_packets(minidlna_t) corenet_tcp_bind_trivnet1_port(minidlna_t) -files_read_etc_files(minidlna_t) files_search_var_lib(minidlna_t) +auth_use_nsswitch(minidlna_t) + miscfiles_read_localization(minidlna_t) miscfiles_read_public_files(minidlna_t) |