Package: selinux-policy-default
Version: 2:0.2.20100524-7+squeeze1
Severity: normal
Hi,
The amavis policy file has been removed due to bug #559860 and the
clamd one is used instead.
This seems wrong to me as amavis require extra permissions to be able
to run pyzor and razor.
I guess that a proper fix would be to remove the duplicate definition
between the clamd and amavis policy instead.
Cheers
Laurent Bigonville
#============= clamd_t ==============
allow clamd_t amavisd_send_port_t:tcp_socket name_connect;
allow clamd_t clamd_var_lib_t:lnk_file { read getattr };
allow clamd_t port_t:udp_socket name_bind;
allow clamd_t pyzor_exec_t:file { execute getattr read open ioctl
execute_no_trans };
allow clamd_t razor_etc_t:dir { search getattr };
allow clamd_t razor_etc_t:file { read getattr open ioctl };
allow clamd_t razor_log_t:file { ioctl open getattr append };
allow clamd_t razor_port_t:tcp_socket name_connect;
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
