commit: 54607cc91b1bf9ca7dbf3b9527776b5a0effefb1 Author: Garrett Holmstrom <gholms <AT> devzero <DOT> com> AuthorDate: Wed Jun 29 23:27:13 2016 +0000 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> CommitDate: Sun Jul 3 11:27:12 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=54607cc9
corecmd: Remove fcontext for /etc/sysconfig/libvirtd /etc/sysconfig/libvirtd does not have the executable bit set, so it does not make sense for it to be labelled bin_t. I can't seem to find the reason it was set that way originally. Signed-off-by: Garrett Holmstrom <gholms <AT> devzero.com> policy/modules/kernel/corecommands.fc | 1 - 1 file changed, 1 deletion(-) diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc index 90541eb..c265d1f 100644 --- a/policy/modules/kernel/corecommands.fc +++ b/policy/modules/kernel/corecommands.fc @@ -105,7 +105,6 @@ ifdef(`distro_redhat',` /etc/sysconfig/crond -- gen_context(system_u:object_r:bin_t,s0) /etc/sysconfig/init -- gen_context(system_u:object_r:bin_t,s0) -/etc/sysconfig/libvirtd -- gen_context(system_u:object_r:bin_t,s0) /etc/sysconfig/netconsole -- gen_context(system_u:object_r:bin_t,s0) /etc/sysconfig/readonly-root -- gen_context(system_u:object_r:bin_t,s0)
