[DSE-Dev] Bug#941621: Mention where to find the standard perm_map for seinfoflow

Christian Göttsche cgzones at googlemail.com
Thu Oct 3 01:02:49 BST 2019


Package: setools
Version: 4.2.2-1+b1
Severity: wishlist

Maybe it would be helpful to mention in the man page of seinfoflow
where to find the standard permission map.
(It is at /var/lib/sepolgen/perm_map in package python3-sepolgen)


--- seinfoflow.1.bak    2019-10-03 01:54:49.426056708 +0200
+++ seinfoflow.1        2019-10-03 02:01:27.382966149 +0200
@@ -18,6 +18,11 @@
 If no policy file is provided, \fBseinfoflow\fR will search for the
policy running on the current
 system. If no policy can be found, \fBseinfoflow\fR will print an
error message and exit.

+.SH PERMISSION MAP
+.PP
+A file containing mappings of object permissions for object classes.
These mappings are the basis on how to compute the infoflow between
types.
+On Debian a standard permission map can be found when the package
\fBpython3-sepolgen\fR is installed at
\fI/var/lib/sepolgen/perm_map\fR.
+
 .SH OPTIONS
 .SS Analysis Settings
 .IP "-p POLICY"



More information about the SELinux-devel mailing list