diff options
Diffstat (limited to 'redhat/tdebase')
-rw-r--r-- | redhat/tdebase/file_contexts.el6 | 8 | ||||
-rw-r--r-- | redhat/tdebase/file_contexts.fc17 | 8 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kcheckpass-trinity.fc18 | 5 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kcheckpass-trinity.mga3 | 5 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kcheckpass-trinity.pclos2013 | 5 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity-np.fc18 | 16 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity-np.mga3 | 11 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity-np.pclos2013 | 7 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity.fc18 | 19 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity.mga3 | 13 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kdm-trinity.pclos2013 | 8 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kscreensaver-trinity.fc18 | 5 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kscreensaver-trinity.mga3 | 5 | ||||
-rw-r--r-- | redhat/tdebase/pamd.kscreensaver-trinity.pclos2013 | 5 | ||||
-rw-r--r-- | redhat/tdebase/tdm.el6.pp | bin | 0 -> 915 bytes | |||
-rw-r--r-- | redhat/tdebase/tdm.el6.te | 11 | ||||
-rw-r--r-- | redhat/tdebase/tdm.fc17.pp | bin | 0 -> 936 bytes | |||
-rw-r--r-- | redhat/tdebase/tdm.fc17.te | 13 | ||||
-rw-r--r-- | redhat/tdebase/tdm.service.fc18 | 13 |
19 files changed, 157 insertions, 0 deletions
diff --git a/redhat/tdebase/file_contexts.el6 b/redhat/tdebase/file_contexts.el6 new file mode 100644 index 000000000..71b45c38f --- /dev/null +++ b/redhat/tdebase/file_contexts.el6 @@ -0,0 +1,8 @@ +/etc/trinity/kdm/Xreset -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/Xsession -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/Xstartup -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/backgroundrc system_u:object_r:xdm_var_run_t:s0 +/opt/trinity/bin/kdesu -- system_u:object_r:su_exec_t:s0 +/opt/trinity/bin/kdm -- system_u:object_r:xdm_exec_t:s0 +/root/\.trinity(/.*)? system_u:object_r:config_home_t:s0 +/home/[^/]*/\.trinity(/.*)? unconfined_u:object_r:config_home_t:s0 diff --git a/redhat/tdebase/file_contexts.fc17 b/redhat/tdebase/file_contexts.fc17 new file mode 100644 index 000000000..71b45c38f --- /dev/null +++ b/redhat/tdebase/file_contexts.fc17 @@ -0,0 +1,8 @@ +/etc/trinity/kdm/Xreset -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/Xsession -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/Xstartup -- system_u:object_r:xsession_exec_t:s0 +/etc/trinity/kdm/backgroundrc system_u:object_r:xdm_var_run_t:s0 +/opt/trinity/bin/kdesu -- system_u:object_r:su_exec_t:s0 +/opt/trinity/bin/kdm -- system_u:object_r:xdm_exec_t:s0 +/root/\.trinity(/.*)? system_u:object_r:config_home_t:s0 +/home/[^/]*/\.trinity(/.*)? unconfined_u:object_r:config_home_t:s0 diff --git a/redhat/tdebase/pamd.kcheckpass-trinity.fc18 b/redhat/tdebase/pamd.kcheckpass-trinity.fc18 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kcheckpass-trinity.fc18 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/pamd.kcheckpass-trinity.mga3 b/redhat/tdebase/pamd.kcheckpass-trinity.mga3 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kcheckpass-trinity.mga3 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/pamd.kcheckpass-trinity.pclos2013 b/redhat/tdebase/pamd.kcheckpass-trinity.pclos2013 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kcheckpass-trinity.pclos2013 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/pamd.kdm-trinity-np.fc18 b/redhat/tdebase/pamd.kdm-trinity-np.fc18 new file mode 100644 index 000000000..0616e66f6 --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity-np.fc18 @@ -0,0 +1,16 @@ + #%PAM-1.0 +auth required pam_env.so +auth required pam_permit.so +auth include postlogin +account required pam_nologin.so +account include system-auth +password include system-auth +session required pam_selinux.so close +session required pam_loginuid.so +session optional pam_console.so +-session optional pam_ck_connector.so +session required pam_selinux.so open +session optional pam_keyinit.so force revoke +session required pam_namespace.so +session include system-auth +session include postlogin diff --git a/redhat/tdebase/pamd.kdm-trinity-np.mga3 b/redhat/tdebase/pamd.kdm-trinity-np.mga3 new file mode 100644 index 000000000..f884c1de6 --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity-np.mga3 @@ -0,0 +1,11 @@ +#%PAM-1.0 +auth required pam_env.so +auth required pam_permit.so +account required pam_nologin.so +account include system-auth +password include system-auth +session required pam_loginuid.so +session optional pam_console.so +session optional pam_keyinit.so force revoke +session required pam_namespace.so +session include system-auth diff --git a/redhat/tdebase/pamd.kdm-trinity-np.pclos2013 b/redhat/tdebase/pamd.kdm-trinity-np.pclos2013 new file mode 100644 index 000000000..690b4df08 --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity-np.pclos2013 @@ -0,0 +1,7 @@ +#%PAM-1.0 +auth required pam_env.so +auth required pam_permit.so +account include system-auth +password include system-auth +session include system-auth +session optional pam_console.so diff --git a/redhat/tdebase/pamd.kdm-trinity.fc18 b/redhat/tdebase/pamd.kdm-trinity.fc18 new file mode 100644 index 000000000..686433fce --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity.fc18 @@ -0,0 +1,19 @@ +#%PAM-1.0 +auth [success=done ignore=ignore default=bad] pam_selinux_permit.so +auth required pam_env.so +auth substack system-auth +-auth optional pam_gnome_keyring.so +auth include postlogin +account required pam_nologin.so +account include system-auth +password include system-auth +session required pam_selinux.so close +session required pam_loginuid.so +session optional pam_console.so +-session optional pam_ck_connector.so +session required pam_selinux.so open +session optional pam_keyinit.so force revoke +session required pam_namespace.so +session include system-auth +-session optional pam_gnome_keyring.so auto_start +session include postlogin diff --git a/redhat/tdebase/pamd.kdm-trinity.mga3 b/redhat/tdebase/pamd.kdm-trinity.mga3 new file mode 100644 index 000000000..3a1115b0c --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity.mga3 @@ -0,0 +1,13 @@ +#%PAM-1.0 +auth required pam_env.so +auth required pam_succeed_if.so +auth sufficient pam_succeed_if.so user ingroup nopasswdlogin +auth substack system-auth +account required pam_nologin.so +account include system-auth +password include system-auth +session required pam_loginuid.so +session optional pam_console.so +session optional pam_keyinit.so force revoke +session required pam_namespace.so +session include system-auth diff --git a/redhat/tdebase/pamd.kdm-trinity.pclos2013 b/redhat/tdebase/pamd.kdm-trinity.pclos2013 new file mode 100644 index 000000000..87d080f58 --- /dev/null +++ b/redhat/tdebase/pamd.kdm-trinity.pclos2013 @@ -0,0 +1,8 @@ +#%PAM-1.0 +auth include system-auth +auth required pam_nologin.so +account include system-auth +password include system-auth +session include system-auth +session optional pam_console.so +session required pam_namespace.so diff --git a/redhat/tdebase/pamd.kscreensaver-trinity.fc18 b/redhat/tdebase/pamd.kscreensaver-trinity.fc18 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kscreensaver-trinity.fc18 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/pamd.kscreensaver-trinity.mga3 b/redhat/tdebase/pamd.kscreensaver-trinity.mga3 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kscreensaver-trinity.mga3 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/pamd.kscreensaver-trinity.pclos2013 b/redhat/tdebase/pamd.kscreensaver-trinity.pclos2013 new file mode 100644 index 000000000..0a37e6e13 --- /dev/null +++ b/redhat/tdebase/pamd.kscreensaver-trinity.pclos2013 @@ -0,0 +1,5 @@ +#%PAM-1.0 +auth include system-auth +account include system-auth +password include system-auth +session include system-auth diff --git a/redhat/tdebase/tdm.el6.pp b/redhat/tdebase/tdm.el6.pp Binary files differnew file mode 100644 index 000000000..1ecd9bcb9 --- /dev/null +++ b/redhat/tdebase/tdm.el6.pp diff --git a/redhat/tdebase/tdm.el6.te b/redhat/tdebase/tdm.el6.te new file mode 100644 index 000000000..befe10218 --- /dev/null +++ b/redhat/tdebase/tdm.el6.te @@ -0,0 +1,11 @@ + +module tdm.el6 1.0; + +require { + type fprintd_t; + type initrc_t; + class dbus send_msg; +} + +#============= fprintd_t ============== +allow fprintd_t initrc_t:dbus send_msg; diff --git a/redhat/tdebase/tdm.fc17.pp b/redhat/tdebase/tdm.fc17.pp Binary files differnew file mode 100644 index 000000000..dec162d22 --- /dev/null +++ b/redhat/tdebase/tdm.fc17.pp diff --git a/redhat/tdebase/tdm.fc17.te b/redhat/tdebase/tdm.fc17.te new file mode 100644 index 000000000..1b19a7116 --- /dev/null +++ b/redhat/tdebase/tdm.fc17.te @@ -0,0 +1,13 @@ + +module tdm.fc17 1.0; + +require { + type fprintd_t; + type initrc_t; + class dbus send_msg; +} + +#============= fprintd_t ============== +#!!!! This avc is allowed in the current policy + +allow fprintd_t initrc_t:dbus send_msg; diff --git a/redhat/tdebase/tdm.service.fc18 b/redhat/tdebase/tdm.service.fc18 new file mode 100644 index 000000000..71f2ce038 --- /dev/null +++ b/redhat/tdebase/tdm.service.fc18 @@ -0,0 +1,13 @@ +[Unit] +Description=The Trinity login manager +Conflicts=getty@tty1.service +After=systemd-user-sessions.service getty@tty1.service plymouth-quit.service livesys-late.service +Conflicts=plymouth-quit.service + +[Service] +ExecStart=/opt/trinity/bin/kdm +Restart=always +IgnoreSIGPIPE=no + +[Install] +Alias=display-manager.service |