On 06/29/2010 01:45 AM, Sergey Noskov wrote: > On 22/06/10 17:07, Daniel J Walsh wrote: >>> So, I have 2 questions here: >>> 1. Shouldn't the ssh forwarding be the boolean in the policy? >> Probably. >>> 2. What should I modify now(or how to find, what to modify) to deny sshd >>> connects to ports at all? >>> >> Send me a patch with the boolean defined. > I could do this, but only after I find where the problem is, because I > still can't disable forwarding. I'm trying to comment the line that for > sure enables it(see my first message), but forwarding still works and I > cannot find any other line, that could probably do that. > > Finding the place, where it's enabled is the help I'm currently asking for. > -- > selinux mailing list > selinux@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/selinux Hi I am just back from vacation. Sorry for not getting back to you sooner. I am adding sshd_forward_ports boolean to Rawhide. -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
