From 03318bd5a994b6b4ffa9fed05272fff70041a38d Mon Sep 17 00:00:00 2001
From: Daniel J Walsh <dwalsh@fedoraproject.org>
Date: Nov 07 2007 22:16:08 +0000
Subject: - Add obsoletes selinux-policy-strict

- Run inetd unconfined

---

diff --git a/policy-20070703.patch b/policy-20070703.patch
index a2c53eb..085d89c 100644
--- a/policy-20070703.patch
+++ b/policy-20070703.patch
@@ -2875,6 +2875,18 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/apps/java.te 
 +optional_policy(`
 +		xserver_xdm_rw_shm(java_t)
  ')
+diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/apps/loadkeys.te serefpolicy-3.0.8/policy/modules/apps/loadkeys.te
+--- nsaserefpolicy/policy/modules/apps/loadkeys.te	2007-10-22 13:21:41.000000000 -0400
++++ serefpolicy-3.0.8/policy/modules/apps/loadkeys.te	2007-11-07 17:15:22.000000000 -0500
+@@ -41,6 +41,8 @@
+ 
+ miscfiles_read_localization(loadkeys_t)
+ 
++userdom_dontaudit_search_users_home_dirs(loadkeys_t)
++
+ optional_policy(`
+ 	nscd_dontaudit_search_pid(loadkeys_t)
+ ')
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/apps/mono.if serefpolicy-3.0.8/policy/modules/apps/mono.if
 --- nsaserefpolicy/policy/modules/apps/mono.if	2007-10-22 13:21:41.000000000 -0400
 +++ serefpolicy-3.0.8/policy/modules/apps/mono.if	2007-10-29 23:59:29.000000000 -0400
@@ -17303,7 +17315,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/userdo
  /tmp/gconfd-USER -d	gen_context(system_u:object_r:ROLE_tmp_t,s0)
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/userdomain.if serefpolicy-3.0.8/policy/modules/system/userdomain.if
 --- nsaserefpolicy/policy/modules/system/userdomain.if	2007-10-22 13:21:40.000000000 -0400
-+++ serefpolicy-3.0.8/policy/modules/system/userdomain.if	2007-11-07 15:17:58.000000000 -0500
++++ serefpolicy-3.0.8/policy/modules/system/userdomain.if	2007-11-07 17:15:08.000000000 -0500
 @@ -29,8 +29,9 @@
  	')
  
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 8f420c0..24925bc 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -275,6 +275,7 @@ Summary: SELinux targeted base policy
 Provides: selinux-policy-base
 Group: System Environment/Base
 Obsoletes: selinux-policy-targeted-sources < 2
+Obsoletes: selinux-policy-strict
 Requires(pre): policycoreutils >= %{POLICYCOREUTILSVER}
 Requires(pre): coreutils
 Requires(pre): selinux-policy = %{version}-%{release}
@@ -379,6 +380,10 @@ exit 0
 %endif
 
 %changelog
+* Tue Nov 7 2007 Dan Walsh <dwalsh@redhat.com> 3.0.8-48
+- Add obsoletes selinux-policy-strict
+- Run inetd unconfined
+
 * Tue Nov 6 2007 Dan Walsh <dwalsh@redhat.com> 3.0.8-47
 - Allow all dns_resolves to use avahi stream
 - Don't transition from unconfined_t to ping_t