Package: selinux-policy-default Version: 2:0.2.20100524-7+squeeze1 Severity: normal
Hi, The amavis policy file has been removed due to bug #559860 and the clamd one is used instead. This seems wrong to me as amavis require extra permissions to be able to run pyzor and razor. I guess that a proper fix would be to remove the duplicate definition between the clamd and amavis policy instead. Cheers Laurent Bigonville #============= clamd_t ============== allow clamd_t amavisd_send_port_t:tcp_socket name_connect; allow clamd_t clamd_var_lib_t:lnk_file { read getattr }; allow clamd_t port_t:udp_socket name_bind; allow clamd_t pyzor_exec_t:file { execute getattr read open ioctl execute_no_trans }; allow clamd_t razor_etc_t:dir { search getattr }; allow clamd_t razor_etc_t:file { read getattr open ioctl }; allow clamd_t razor_log_t:file { ioctl open getattr append }; allow clamd_t razor_port_t:tcp_socket name_connect; -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org