1 Summary: SELinux tools for managing policy
2 Summary(pl): Narzêdzia do zarz±dzania polityk± SELinux
8 Source0: http://www.nsa.gov/selinux/archives/%{name}-%{version}.tgz
9 # Source0-md5: 12991aa41d2e1c9fa289d1afd6633dd2
10 BuildRequires: perl-base
11 BuildRequires: tk-devel
13 Requires: policycoreutils
16 # R: policy, policy-sources
17 BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
20 This package contains some tools and libraries for Security-enhanced
21 Linux (a project with enhanced security functionality designed to add
22 mandatory access controls to Linux). This package includes the
24 - apol: The GUI-based policy analysis tool.
25 - sepcut: A basic GUI-based policy configuration, browsing, editing,
26 and testing tool, intended to provide a complete, single user
27 interface for viewing the source files of a policy, configuring
28 policy program modules, editing policy files, and making and testing
30 - seuser: A GUI and command line user manager tool for SELinux. This
31 is a tool that actually manages a portion of a running policy (i.e.,
33 - seuser scripts: A set of shell scripts: seuseradd, seusermod, and
34 seuserdel. These scripts combine the functions of the associated s*
35 commands with seuser to provide a single interface to manage users
38 And the following tool which can serve as building blocks for the
39 development of additional tools:
40 - awish: A version of the TCL/TK wish interpreter that includes the
41 setools libraries. It's used to test SELinux GUIs (apol and seuser
42 have the interpreter compiled within them). One could conceivably
43 write one's own GUI tools using TCL/TK as extended via awish.
45 # unpackaged yet (what about headers?)
46 - libapol: The main policy.conf analysis library, which is the core
47 library for all our tools.
48 - libseuser: The primary logic used for seuser.
52 Ten pakiet zawiera narzêdzia i biblioteki dla Linuksa w wersji
53 Security-enhanced (jest to projekt z rozszerzon± funkcjonalno¶ci±
54 zwi±zan± z bezpieczeñstwem opracowan± w celu dodania mandatowej
55 kontroli dostêpu do Linuksa). Ten pakiet zawiera nastêpuj±ce
57 - apol - narzêdzie do analizy polityki z graficznym interfejsem.
58 - sepcut - podstawowe graficzne narzêdzie do konfiguracji,
59 przegl±dania, edycji i testowania polityki, maj±ce zapewniæ
60 kompletny interfejs do przegl±dania plików ¼ród³owych polityki,
61 konfigurowania modu³ów programu polityki, edycji plików polityki
62 oraz tworzenia i testowania polityki.
63 - seuser - graficzne oraz dzia³aj±ce z linii poleceñ narzêdzie do
64 zarz±dzania u¿ytkownikami dla SELinuksa. Jest to narzêdzie
65 zarz±dzaj±ce czê¶ci± funkcjonuj±cej polityki (czyli kontami
67 - skrypty seuser - zbiór skryptów pow³oki: seuseradd, seusermod oraz
68 seuserdel. £±cz± one funkcjonalno¶æ poleceñ s* z seuser, aby
69 zapewniæ pojedynczy interfejs do zarz±dzania u¿ytkownikami w
72 Pakiet zawiera tak¿e narzêdzie mog±ce s³u¿yæ jako czê¶æ do budowania
73 innych narzêdzi - jest to awish, czyli wersja interpretera wish z
74 TCL/TK zawieraj±ca biblioteki setools. Jest u¿ywany do testowania
75 GUI dla SELinuksa (apol i seuser maj± interpreter wkompilowany).
76 Mo¿na pisaæ w³asne graficzne narzêdzia przy u¿yciu awisha.
84 CFLAGS="%{rpmcflags}" \
85 TCL_LIBS="-ltk -ltcl -lfl -lm -ldl"
88 rm -rf $RPM_BUILD_ROOT
89 install -d $RPM_BUILD_ROOT%{_bindir}
92 DESTDIR=$RPM_BUILD_ROOT
95 rm -rf $RPM_BUILD_ROOT
98 # not ready... (policy, chcon from patched coreutils?)
100 cd /etc/security/selinux/src/policy
103 chcon system_u:object_r:policy_src_t /etc/security/selinux/src/policy/domains/program/seuser.te
104 chcon system_u:object_r:policy_src_t /etc/security/selinux/src/policy/file_contexts/program/seuser.fc
105 chcon system_u:object_r:seuser_exec_t /usr/bin/seuser
106 chcon system_u:object_r:seuser_conf_t /usr/lib/apol/seuser.conf
109 cd /etc/security/selinux/src/policy
115 %defattr(644,root,root,755)
116 %attr(755,root,root) %{_bindir}/*
118 /etc/security/selinux/src/policy/domains/program/seuser.te
119 /etc/security/selinux/src/policy/file_contexts/program/seuser.fc