diff options
| author | William Pitcock <nenolod@dereferenced.org> | 2011-02-07 23:47:16 -0600 |
|---|---|---|
| committer | William Pitcock <nenolod@dereferenced.org> | 2011-02-07 23:47:16 -0600 |
| commit | d99655493a358f0297722f280489b3abda7af2b3 (patch) | |
| tree | 564423a5bd07c226d284e59844a92e38bc7fdd82 | |
| parent | 2f25f6f9685a3e642f3f440c33d0814f5f9037f1 (diff) | |
| download | aports-d99655493a358f0297722f280489b3abda7af2b3.tar.bz2 aports-d99655493a358f0297722f280489b3abda7af2b3.tar.xz | |
testing/gradm: change policy defaults location to /var/lib/grsec/policy.d
| -rw-r--r-- | testing/gradm/APKBUILD | 12 | ||||
| -rw-r--r-- | testing/gradm/base.policyd | 1 | ||||
| -rw-r--r-- | testing/gradm/policy | 10 |
3 files changed, 12 insertions, 11 deletions
diff --git a/testing/gradm/APKBUILD b/testing/gradm/APKBUILD index 6f55b50ccf..8146bc9526 100644 --- a/testing/gradm/APKBUILD +++ b/testing/gradm/APKBUILD @@ -2,7 +2,7 @@ # Maintainer: William Pitcock <nenolod@dereferenced.org> pkgname=gradm pkgver=2.2.0 -pkgrel=3 +pkgrel=4 pkgdesc="administrative utility for grsecurity kernels" url="http://www.grsecurity.org/" arch="all" @@ -42,9 +42,9 @@ package() { # install the base policy file which pulls in everything else. install -m644 "$srcdir"/policy "$pkgdir"/etc/grsec/policy - # prepare and install base policy to /etc/grsec/policy.d - install -d -D "$pkgdir"/etc/grsec/policy.d - install -m644 "$srcdir"/base.policyd "$pkgdir"/etc/grsec/policy.d/base + # prepare and install base policy to /var/lib/grsec/policy.d + install -d -D "$pkgdir"/var/lib/grsec/policy.d + install -m644 "$srcdir"/base.policyd "$pkgdir"/var/lib/grsec/policy.d/00-base # install grsec-rbac into initd install -d -D "$pkgdir"/etc/init.d @@ -52,6 +52,6 @@ package() { } md5sums="081765637a407dd7e4cd07f95413d6b8 gradm-2.2.0-201011061849.tar.gz -06495eebb8f2346d96c64c133d1614fa policy -9b66076b8e74e3d6a637457e23b5c699 base.policyd +38ee3aef884bdcfe6a5b925760f6220b policy +1055ad6e53ab53e5d41b9eb2833bd1e7 base.policyd 2fc5d055dd43a2d9e1bed378dcab8641 grsec-rbac.initd" diff --git a/testing/gradm/base.policyd b/testing/gradm/base.policyd index bf95c2bd82..3c80101a2d 100644 --- a/testing/gradm/base.policyd +++ b/testing/gradm/base.policyd @@ -49,6 +49,7 @@ subject / dpo /boot h /lib/modules h /etc/grsec h + /var/lib/grsec h -CAP_KILL -CAP_SYS_TTY_CONFIG diff --git a/testing/gradm/policy b/testing/gradm/policy index 806f0e0795..e5a3df439c 100644 --- a/testing/gradm/policy +++ b/testing/gradm/policy @@ -195,13 +195,13 @@ # # Default security policy provided by packages in Alpine are installed into -# /etc/grsec/policy.d as /etc/grsec/policy.d/$pkgname where $pkgname is the -# package name. It is not recommended that you edit those definitions unless -# you know what you're doing, as the Alpine system may depend on the presence -# of those definitions. +# /var/lib/grsec/policy.d as /var/lib/grsec/policy.d/$pkgname where $pkgname +# is the package name. It is not recommended that you edit those definitions +# unless you know what you're doing, as the Alpine system may depend on the +# presence of those definitions. # -include </etc/grsec/policy.d> +include </var/lib/grsec/policy.d> # # If you wish to add any additions to the system policy, you may do so below |