AUSey Fedora 20 selinux etc

[Tony Breeds]

Hi All,

   I'm very late to this AUSKey thing but I just had to get it working.

It's workign for me with firefox, openjdk and icedtea-web all from Fedora 20

The only hassle I had was selinux.  I had to create a policy file like the attached

Please excuse me being too lazy to work out how to correctly inline the text with google groups.

The audit2allow manpage has some documentation on how to use the .te file

Tony.

[Paul Gampe]

Confirmed this works. Thanks Tony!

[Tony Breeds]

On Friday, 12 December 2014 06:31:00 UTC+11, Paul Gampe wrote:

Confirmed this works. Thanks Tony!

Cool  2 uses means it MUST be good :)

Tony. 

[snowo...@gmail.com]

Yeah, I got it working too (using your policy file - Thanks).

However, I had to remove a previous AUSkey download and attempted install (~/AUSkey), then do a fresh install again before it worked correctly.

Mostly adding this note in case others run into the same issue.

Thanks Tony.

[porjo38]

Tony's policy file did not work for me on Fedora 22. I found I needed the following instead:

module auskey 1.0;

require {
    type user_home_dir_t;
    type user_home_t;
    type mozilla_plugin_t;
    class dir create;
    class file { write getattr read create unlink open };
}

#============= mozilla_plugin_t ==============
allow mozilla_plugin_t user_home_dir_t:dir create;
allow mozilla_plugin_t user_home_dir_t:file { write getattr read create unlink open };
allow mozilla_plugin_t user_home_t:file { write getattr read create unlink open };