AUSey Fedora 20 selinux etc

80 views
Skip to first unread message

Tony Breeds

unread,
Nov 19, 2014, 4:06:33 AM11/19/14
to aus...@googlegroups.com
Hi All,
   I'm very late to this AUSKey thing but I just had to get it working.

It's workign for me with firefox, openjdk and icedtea-web all from Fedora 20

The only hassle I had was selinux.  I had to create a policy file like the attached

Please excuse me being too lazy to work out how to correctly inline the text with google groups.

The audit2allow manpage has some documentation on how to use the .te file

Tony.
auskey.te

Paul Gampe

unread,
Dec 11, 2014, 2:31:00 PM12/11/14
to aus...@googlegroups.com
Confirmed this works. Thanks Tony!

Tony Breeds

unread,
Dec 11, 2014, 6:34:59 PM12/11/14
to aus...@googlegroups.com
On Friday, 12 December 2014 06:31:00 UTC+11, Paul Gampe wrote:
Confirmed this works. Thanks Tony!

Cool  2 uses means it MUST be good :)

Tony. 

snowo...@gmail.com

unread,
Jan 12, 2015, 8:21:10 AM1/12/15
to aus...@googlegroups.com
Yeah, I got it working too (using your policy file - Thanks).

However, I had to remove a previous AUSkey download and attempted install (~/AUSkey), then do a fresh install again before it worked correctly.

Mostly adding this note in case others run into the same issue.

Thanks Tony.

porjo38

unread,
Jun 29, 2015, 11:37:49 PM6/29/15
to aus...@googlegroups.com
Tony's policy file did not work for me on Fedora 22. I found I needed the following instead:

module auskey 1.0;

require {
    type user_home_dir_t;
    type user_home_t;
    type mozilla_plugin_t;
    class dir create;
    class file { write getattr read create unlink open };
}

#============= mozilla_plugin_t ==============
allow mozilla_plugin_t user_home_dir_t:dir create;
allow mozilla_plugin_t user_home_dir_t:file { write getattr read create unlink open };
allow mozilla_plugin_t user_home_t:file { write getattr read create unlink open };
Reply all
Reply to author
Forward
0 new messages