PAL.C.T MINI SHELL
Þ������¢�������,������<*������h8������i8������}8������8������¬8������Œ8��?���Ó8��;����9��&���O9��9���v9������°9��9���Í9��7����:������?:������C:������L:������`:������s:������
:������:������¥:������¶:������º:������Á:������Õ:������æ:������÷:�������;������+;������<;������U;��/���^;������;������¥;������«;������»;��G���¿;��E����<��$���M<��)���r<��M���<��5���ê<��)��� =��l���J=��)���·=������á=��2���ÿ=��L���2>��K���>������Ë>��"���ç>������
?������(?��!���G?��'���i?��D���?��B���Ö?������@��A���€@������æ@��4����A��&���7A��,���^A��%���A��2���±A������äA��K����B��5���MB��T���B��<���ØB��L����C��(���bC��,���C��P���žC��2��� D��.���<D��J���kD��%���¶D��(���ÜD��4����E������:E��]���VE��C���ŽE��(���øE��²���!F��$���ÔF������ùF��%����G��-���=G��L���kG��x���žG������1H��(���=H������fH������H��2���H������ºH������ÔH������áH��2���åH��#����I��1���<I��2���nI������¡I�� ���»I��"���ÜI��º���ÿI�����ºJ��œ���AL��
���ÿL������
M�������M��P���&M������wM������M��!���«M������ÍM��"���èM�������N������$N������CN��-���`N��%���N��(���ŽN��1���ÝN��*����O��2���:O��(���mO������O��%���ŽO��$���ÚO������ÿO�� ����P������>P������[P��"���{P��$���P��!���ÃP������åP��%����Q������'Q�� ���GQ�� ���hQ������Q������¢Q��$���ŸQ������ãQ��%����R������'R��$���CR������hR��$���
R��'���ªR������ÒR������ïR�������S������+S������@S������XS������uS��"���S������²S������ÐS�� ���åS�� ����T������'T�� ���@T������aT������zT��$���T������»T��%���ÙT������ÿT�������U������3U������KU��#���kU������U������¬U������ÇU������åU��5����V������7V������VV��!���uV��(���V��!���ÀV��"���âV��!����W��&���'W������NW��$���hW��/���W��/���œW��4���íW��2���"X������UX��?���oX��$���¯X��)���ÔX��)���þX��.���(Y��,���WY��)���Y��)���®Y��.���ØY��,����Z��)���4Z��)���^Z��.���Z��,���·Z��$���äZ��!��� [������+[��)���G[������q[������v[��
���[������[�� ���«[�� ���µ[������¿[������Ó[������ç[�������\�������\��
����\��-���)\��(���W\��)���\��2���ª\��2���Ý\��-����]��*���>]��*���i]��%���]��%���º]��*���à]��.����^��,���:^��/���g^��$���^��/���Œ^��+���ì^��-����_��+���F_��+���r_��'���_��$���Æ_��,���ë_��-����`��0���F`��.���w`��+���Š`��0���Ò`��4����a��+���8a��(���da��)���a��+���·a��,���ãa��+����b��#���<b��%���`b��#���b��)���ªb��,���Ôb��+����c��+���-c��+���Yc��-���
c��+���³c��-���ßc��-���
d��.���;d��(���jd��-���d��/���Ád��.���ñd��$��� e��)���Ee��)���oe��.���e��-���Èe��*���öe��*���!f��/���Lf��-���|f��*���ªf��.���Õf��2����g��+���7g��*���cg��.���g��*���œg��0���èg��+����h��-���Eh��-���sh��+���¡h��-���Íh��,���ûh��+���(i��,���Ti��)���i��*���«i��)���Öi��&����j��+���'j��,���Sj��*���j��,���«j��,���Øj��+����k��-���1k��*���_k��*���k��*���µk��*���àk��)����l��*���5l��%���`l��/���l��-���¶l��)���äl��&����m��/���5m��-���em��/���m��&���Ãm��0���êm��#����n��-���?n��-���mn��*���n��)���Æn��%���ðn��+����o��-���Bo��+���po��$���o��(���Áo��*���êo��*����p��$���@p��0���ep��-���p��*���Äp��#���ïp��+����q��/���?q��3���oq��.���£q��&���Òq��4���ùq��+���.r��.���Zr��*���r��+���Žr��+���àr��+����s��,���8s��+���es��/���s��+���Ás��)���ís��-����t��*���Et��*���pt��-���t��/���Ét��)���ùt��,���#u��+���Pu��/���|u��0���¬u��*���Ýu��)����v��.���2v��-���av��+���v��,���»v��.���èv��-����w��)���Ew��*���ow��)���w��)���Äw��,���îw��,����x������Hx������Qx��1���px��:���¢x��9���Ýx��N����y������fy������xy��W���
y�� ���Ýy��2���çy��J����z��<���ez������¢z�� ���Œz������Ýz��"���üz��+����{��&���K{������r{��+���{��#���²{������Ö{��!���ô{��%����|������<|������X|��!���u|�� ���|�� ���ž|��F���Ù|��
��� }������+}��
���?}������M}������k}�� ���~}������}��
���}������©}�� ���Œ}��;���Æ}��"����~������%~������,~������0~������6~��
���Q~��
���\~������j~������v~��4���~������Ç~������ã~�� ���ò~��6����������J������e������n������w�������� ���²������Œ������Ï������â��
���î������ù��
������<������#���X�� ���|�� �����������������������
���š��
���¶������Ä������Ö������ñ�� ���
�������������+������G��%���S��G���y������Á������Í������Ó������×������Û������à������í��������������������'������@������Y������m�������� �����
���������€������«��
���Œ������Ê������Ï��2���ê�������������7������C��8���T��8���������Æ������Í������Ö������å������ë������ô�������������!������9������W������v��&���������¶������Æ��"���á�������
��(����
������H
������M
������b
������
������
������§
������Ÿ
������Ð
������ï
���������
����������!������<������I������b������o��������:�����7���Ë�������������"������@������D������J������c��¬���p��,������F���J��&�����:���ž��ï���ó��'���ã��<������G���H��������(���¢��$���Ë������ð����������������0������5���O��6���
������Œ������Ì������Ò��q���ç������Y������`������~��|�����������,���ª��*���×��'������.���*��3���Y��4�����2���Â��4���õ��E���*������p�������������'���*��)���R������|��"�����,���Œ������é������ ������'������<������X������q������}������������Š������Ÿ��*���Ü���������'���"��'���J������r��]���������á��
���î�� ���ù��r������U���v������Ì�� ���è������ò����������������.���$��*���S������~��������L���¬������ù����������������%����������C��4���_��<���������Ñ��0���è�������������!������-��_���1��������,���©��4���Ö��#������,���/��(���\��(���
������®��"���Ä������ç��������������������9������P������l������������¢������À������Ç������Ï������×������ß������ç������ï������÷������ÿ��"����������*��#���G��7���k������£������§������ª������¯��$���µ������Ú������ð�����������������������#���"�����F������Û��"���û��7����������V��7���s��
���«�����1��G���ž��S������2���T��N�����4���Ö���������������������������8������X������q������������������ª������±��'���Ÿ��'���æ��$���� ��,���3 ��,���` ������ ��,���« ������Ø ��U���î ��.���D¡�� ���s¡������}¡������¡��l���£¡��r����¢��D���¢��G���È¢��|����£��b���£��Q���ð£�����B€��H���Ý€��D���&¥��S���k¥�����¿¥�����YŠ��)���öŠ��Q��� §��H���r§��,���»§��<���è§��D���%š��m���jš��i���Øš��º���B©��\���ý©��4���Zª��H���ª��E���ت��?����«��G���^«��U���Š«��5���ü«�����2¬��f���Ò¬�����9��g���Ã�����+®��?���Å®��P����¯��«���V¯��Z����°��N���]°�����¬°��@���L±��F���±��j���Ô±��*���?²�����j²��s���û²��C���o³������³³��C���ÐŽ��5����µ��G���Jµ��F���µ�����Ùµ�����s¶�������·��0���'·��&���X·������·��N���·��)���á·�������ž������!ž��A���%ž��!���gž��M���ž��^���מ��+���6¹��5���b¹��9���¹��ñ���Ò¹��ã���ĺ��í���šŒ�� ���œ������ œ������žœ��P���Ëœ��9����Ÿ��1���VŸ��E���Ÿ��=���Ο��B����¿��1���O¿��A���¿��5���ÿ��R���ù¿��I���LÀ��D���À��]���ÛÀ��U���9Á��Z���Á��I���êÁ��=���4Â��H���rÂ��<���»Â��-���øÂ��0���&Ã��3���WÃ��9���Ã��<���ÅÃ��E����Ä��?���HÄ��-���Ä��B���¶Ä��3���ùÄ��6���-Å��9���dÅ��1���Å��,���ÐÅ��E���ýÅ��=���CÆ��B���Æ��1���ÄÆ��C���öÆ��.���:Ç��4���iÇ��0���Ç��-���ÏÇ��A���ýÇ��>���?È��6���~È��2���µÈ��H���èÈ��B���1É��T���tÉ��E���ÉÉ��3����Ê��C���CÊ��E���Ê��0���ÍÊ��9���þÊ��1���8Ë��,���jË��E���Ë��=���ÝË��B����Ì��1���^Ì��,���Ì��4���œÌ��I���òÌ��K���<Í��C���Í��7���ÌÍ��5����Î��9���:Î��L���tÎ��5���ÁÎ��2���÷Î��<���*Ï��D���gÏ��E���¬Ï��C���òÏ��E���6Ð��Q���|Ð��0���ÎÐ��H���ÿÐ��\���HÑ��\���¥Ñ��h����Ò��\���kÒ��-���ÈÒ��g���öÒ��E���^Ó��Q���€Ó��Q���öÓ��]���HÔ��Q���ŠÔ��Q���øÔ��Q���JÕ��]���Õ��Q���úÕ��T���LÖ��T���¡Ö��`���öÖ��T���W×��B���¬×��@���ï×��=���0Ø��:���nØ������©Ø������®Ø������ÇØ������×Ø������õØ�������Ù��'����Ù��$���=Ù��,���bÙ������Ù������¥Ù������¬Ù��B���ÅÙ��1����Ú��7���:Ú��F���rÚ��=���¹Ú��6���÷Ú��3���.Û��8���bÛ��.���Û��.���ÊÛ��8���ùÛ��<���2Ü��:���oÜ��=���ªÜ��-���èÜ��=����Ý��9���TÝ��;���Ý��9���ÊÝ��9����Þ��0���>Þ��-���oÞ��:���Þ��;���ØÞ��>����ß��<���Sß��9���ß��>���Êß��K��� à��9���Uà��1���à��7���Áà��9���ùà��:���3á��9���ná��,���šá��.���Õá��,����â��7���1â��:���iâ��9���€â��9���Þâ��9����ã��;���Rã��9���ã��;���Èã��;����ä��<���@ä��1���}ä��;���¯ä��=���ëä��<���)å��0���få��7���å��7���Ïå��<����æ��;���Dæ��8���æ��3���¹æ��9���íæ��;���'ç��8���cç��<���ç��<���Ùç��9����è��8���Pè��<���è��8���Æè��>���ÿè��9���>é��;���xé��;���Žé��9���ðé��;���*ê��9���fê��9��� ê��:���Úê��7����ë��8���Më��7���ë��/���Ÿë��9���îë��:���(ì��8���cì��:���ì��:���×ì��9����í��;���Lí��8���í��8���Áí��8���úí��8���3î��7���lî��8���€î��.���Ýî��8����ï��;���Eï��7���ï��/���¹ï��=���éï��;���'ð��=���cð��/���¡ð��>���Ñð��,����ñ��;���=ñ��;���yñ��8���µñ��7���îñ��.���&ò��9���Uò��;���ò��9���Ëò��-����ó��-���3ó��3���aó��8���ó��-���Îó��9���üó��;���6ô��8���rô��,���«ô��9���Øô��=����õ��A���Põ��<���õ��/���Ïõ��B���ÿõ��9���Bö��<���|ö��8���¹ö��9���òö��9���,÷��9���f÷��:��� ÷��9���Û÷��=����ø��9���Sø��7���ø��;���Åø��8����ù��8���:ù��;���sù��B���¯ù��7���òù��:���*ú��9���eú��?���ú��>���ßú��8����û��7���Wû��<���û��;���Ìû��9����ü��:���Bü��<���}ü��;���ºü��7���öü��3���.ý��7���bý��7���ý��:���Òý��:���
þ������Hþ������Oþ��Z���eþ��]���Àþ��H����ÿ�����gÿ��$���ìÿ����������d���*����������K���������â���W���j���@���Â���G�������;���K���C������G���Ë���C�������'���W���@������C���À���F�������@���K���=������-���Ê���L���ø���9���E���9������9���¹���c���ó�������W�������j����������)���€�������Î�������â���*���ù�������$�������@�������S���g���i���B���Ñ���������������$��� ���(���'���2�������Z�������m�����������������_���ž���:���� ��$���S ��5���x ��b���® �������
������-
������=
��1���M
��1���
������±
��'���Ÿ
��'���æ
��������������$���!���5�������W���c���g���?������
�������
�����������$�������(�������-�������=�������O�������^���0���n���,�������������'������,����
������.
��0���D
��m���u
������ã
������ö
��������������������������������������%�������>���8���Z���$������*���ž���$���ã�����������.���%�������T�������e�������l���!���s���������� ���±���4���»���S���ð���.���D�������s����������R������b���ï�������R�������h�������o��� �������������+���¢�������Î�������Û���<���ú���0���7���0���h���W����������ñ���"�������B���+���(���n���<������ ���Ô��� ���Þ���5���ÿ�������5�������M�������b��� ���t���#����������¹�������Õ�������ð������������������� ���/�������P�������e�������u���r������Z���ù���6���T���)����������µ�������¹���!���¿���$���á�����������`���
������n���<���ö���{���3���P���¯���B�������Q���C���W����������í���?�������<���K���*������!���³�������Õ���W���ë���X���C���Y����������ö�������������������¥���(�������Î���-���Õ���5�������Ê���9���Ü���� ��[���á ��?���=!��3���}!��K���±!��W���ý!��Q���U"��W���§"��Q���ÿ"��`���Q#��-���²#������à#��Ä���ù#��7���Ÿ$��B���ö$������9%��4���Y%��1���%��)���À%��/���ê%�������&��'���2&��*���Z&������
&������&�� ���µ&��#���Ö&��)���ú&��6���$'��&���['��3���'��P���¶'��$����(�����,(������±(������Í(������à(��º���ö(�����±)������<*������\*��2���t*������§*������·*��8���Ç*��B����+��7���C+��!���{+�����+��&��� ,������G,������K,��I���Z,��6���€,��U���Û,��]���1-��0���-��@���À-�������.�������.�������.�����&.������¿.��G���ß.��4���'/��#���\/��>���/��J���¿/��I���
0��(���T0��4���}0��=���²0��.���ð0��&����1��'���F1��2���n1��5���¡1��5���×1��(���
2������62������F2������N2������V2������^2������f2������n2������v2������~2��)���2��"���°2��7���Ó2��E����3������Q3������X3������_3������d3��8���j3������£3��€���¹3�� ���^4������h4������o4��8���
4����������N�������²���k��� ���j�������e���¡���������~�����������a������!�������Å�����������l���À�������@���������1���í���
���������������ñ���C����������ã���š���������������I�������ô���c���&�������µ���j���h���'���2�������,�����������ä���ó���;���<���ô���ñ�������B���€�����������(���0��������������°���F���]���������������������������û������Ž�������4���¶���p������o�������%�����������=���v�������s���ì���(�������9�������Ì�������ž���ê�����������õ���/���l�������������������{������ð�������y���³���%���b���C�������¥���1�����������i������Ž���ä��������������²���C�������X�������:������Ú�������$���%�������Õ������õ���|���f�������©���f���T���H������K�������Á��������������@���±�����������7�������š���I���Q�������Ù���¿�������Ô������
�������·�������Ï����������G�����������H���Ð������
�������)���������������������Ô��������������s������ï���þ�����������·���)�������W���¹����������Ó���
���¢�������&�������Á������ê���3�������������ª��������������m�����������.���ž���û���D�����������ü�������I����������������������]�������T�����������"�������Ò���À���������������v������«�������«���������������È���A���Ð����������h���5��� ���ú���6�������Ã���Â������6�������F���ø���œ���
���Š�����������a���
���É���k������������������Ñ�������8���ß��������������������������0�������ü�������¶�������u���u���|�����������®���R���Y���'���*���ð���Ì�������$���4�������z���������������Š���O������e���Ï���â��� �����������!�������¯�����������m���à���G���¹���8�������b������è���e���ç���é�������Z���������������q�������^���¢������w�������°���S�������!���Ÿ������|���Y������Z����������
���s���®�������J���z�������K���i���5�������������¢���ò���k��������������O���(��� ���Í�����������Ö���ÿ�����������î���Û���-���
�������Í���G������ª���w���Ý�������*���Å���.����������÷�������V���U���ý�������Ñ�������Ö�������ÿ���������������E���ì���>���µ���������������¬�����������������Õ�����������;���º���J���c���z���Û���V���������������¡���ú���-���}������=���E���³���\���ò�������P���Y���-���ö�����������������������Î����������+���Ç���{����������P���1������$������p���¡���à���<�����������������Æ���d�������
�������Ò�������X���,���¥�������R���É���g�����������¿�������»���2�������t�������§���[�������¯������r���q�������U�������ï������`���×�������g���<���@����������j�������^���Q���w���Ü���œ������S�����������_���J�������+���£�������������������������}���y���F���x���Ç���q�����������Ã�������y���D��� �������á���B������ �������?���x���r���0���i���������������~���n�������Œ����������������������_�����������M�������a���K����������.���T���l���������������ù�������~���v���>��������������S�������n���Œ�����������Þ�������ø���:�������U���Æ���f�������������������A��� ���+�������r���N�������ö�������n������3���������������B������_���å���[���9���������)�����������Ë����������×�������`����������"�����������������������d���£�������E�����������Ù���������������R�������W���]���L���O���æ����������Ä���å���������������5������g�������Ó���8���?���ë�����������€�����������Ä���p���t���\�������*�������þ���ç���`���Ÿ���Ø���b�������Ü��������������»�������h�������ã���H��������������������>�������ß�����������ý�������c���3������N���Þ���©�������[������æ������������������x���������������u���Ø���?�������ë������}���6���#�������§���D���M���2���Z����������Q���P�������������������������o���#���M�������������������������#���È�������A���÷���è������d���í���������'���4�������¬���o���á���Â���Ý���������������������������±���ù���/���������������=�������/���^��� �������7���\��� ���W���î���ó���,���������������"���:������Ê���L���t������Î���������������V�������X����������;���������m�������Ú���&���L���{���Ë���7���â���Ê������é���º���9����%s changed labels.
�%s is already in %s�%s is not a valid context
�%s is not in %s�%s must be a directory�%s! Could not get current context for %s, not relabeling tty.
�%s! Could not get new context for %s, not relabeling tty.
�%s! Could not set new context for %s
�%s: Can't load policy and enforcing mode requested: %s
�%s: Can't load policy: %s
�%s: Policy is already loaded and initial load requested
�******************** IMPORTANT ***********************
�...�600-1024�<b>Applications</b>�<b>Login Users</b>�<b>Root Users</b>�<b>Select:</b>�<b>TCP Ports</b>�<b>UDP Ports</b>�Add�Add %s�Add Booleans Dialog�Add File Context�Add Network Port�Add SELinux Login Mapping�Add SELinux Network Ports�Add SELinux User�Add SELinux User Mapping�Add User�Addr %s is defined in policy, cannot be deleted�Addr %s is not defined�Admin�Admin User Role�All�Allow SELinux webadm user to manage unprivileged users home directories�Allow SELinux webadm user to read unprivileged users home directories�Allow Samba to share nfs directories�Allow Spam Assassin daemon network access�Allow X-Windows server to map a memory region as both executable and writable�Allow all daemons the ability to use unallocated ttys�Allow all daemons to write corefiles to /�Allow cdrecord to read various content. nfs, samba, removable devices, user temp and untrusted content files�Allow clients to write to X shared memory�Allow daemons to run with NIS�Allow evolution and thunderbird to read user files�Allow gadmin SELinux user account to execute files in home directory or /tmp�Allow guest SELinux user account to execute files in home directory or /tmp�Allow java executable stack�Allow mount to mount any directory�Allow mount to mount any file�Allow mplayer executable stack�Allow normal user to execute ping�Allow pppd to be run for a regular user�Allow privileged utilities like hotplug and insmod to run unconfined�Allow programs to read files in non-standard locations (default_t)�Allow rc scripts to run unconfined, including any daemon started by an rc script that does not have a domain transition explicitly defined�Allow regular users direct mouse access (only allow the X server)�Allow rpm to run unconfined�Allow sasl authentication server to read /etc/shadow�Allow spamd to access home directories�Allow squid daemon to connect to the network�Allow ssh logins as sysadm_r:sysadm_t�Allow ssh to run from inetd instead of as a daemon�Allow ssh to run ssh-keysign�Allow staff SELinux user account to execute files in home directory or /tmp�Allow staff Web Browsers to write to home directories�Allow staff_r users to search the sysadm home dir and read files (such as ~/.bashrc)�Allow stunnel daemon to run as standalone, outside of xinetd�Allow sysadm SELinux user account to execute files in home directory or /tmp�Allow sysadm_t to directly start daemons�Allow the mozilla browser to read user files�Allow unconfined SELinux user account to execute files in home directory or /tmp�Allow unconfined to dyntrans to unconfined_execmem�Allow unlabeled packets to flow on the network�Allow user SELinux user account to execute files in home directory or /tmp�Allow user to connect to mysql socket�Allow user to connect to postgres socket�Allow user to r/w noextattrfile (FAT, CDROM, FLOPPY)�Allow user to stat ttyfiles�Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only staff_r can do so�Allow users to control network interfaces (also needs USERCTL=true)�Allow users to execute the mount command�Allow users to run TCP servers (bind to ports and accept connection from the same domain and outside users) disabling this forces FTP passive mode and may change other protocols�Allow users to run the dmesg command�Allow users to rw usb devices�Allow xdm logins as sysadm_r:sysadm_t�Allow xen to read/write physical disk devices�Allow xguest SELinux user account to execute files in home directory or /tmp�Allow xinetd to run unconfined, including any services it starts that do not have a domain transition explicitly defined�Application�Are you sure you want to delete %s '%s'?�Bad format %s: Record %s�Boolean�Boolean %s is defined in policy, cannot be deleted�Boolean %s is not defined�Boolean Name�CVS�Can not combine +/- with other types of categories�Can not have multiple sensitivities�Can not modify sensitivity levels using '+' on %s�Cannot find your entry in the shadow passwd file.
�Cannot read policy store.�Change process mode to enforcing�Change process mode to permissive.�Changing the policy type will cause a relabel of the entire file system on the next boot. Relabeling takes a long time depending on the size of the file system. Do you wish to continue?�Changing to SELinux disabled requires a reboot. It is not recommended. If you later decide to turn SELinux back on, the system will be required to relabel. If you just want to see if SELinux is causing a problem on your system, you can go to permissive mode which will only log errors and not enforce SELinux policy. Permissive mode does not require a reboot Do you wish to continue?�Changing to SELinux enabled will cause a relabel of the entire file system on the next boot. Relabeling takes a long time depending on the size of the file system. Do you wish to continue?�Compatibility�Configue SELinux�Context�Copyright (c)2006 Red Hat, Inc.
Copyright (c) 2006 Dan Walsh <dwalsh@redhat.com>�Could not add SELinux user %s�Could not add addr %s�Could not add file context for %s�Could not add interface %s�Could not add login mapping for %s�Could not add port %s/%s�Could not add prefix %s for %s�Could not add role %s for %s�Could not check if SELinux user %s is defined�Could not check if addr %s is defined�Could not check if boolean %s is defined�Could not check if file context for %s is defined�Could not check if interface %s is defined�Could not check if login mapping for %s is defined�Could not check if port %s/%s is defined�Could not close descriptors.
�Could not commit semanage transaction�Could not create SELinux user for %s�Could not create a key for %s�Could not create a key for %s/%s�Could not create addr for %s�Could not create context for %s�Could not create context for %s/%s�Could not create file context for %s�Could not create interface for %s�Could not create key for %s�Could not create login mapping for %s�Could not create port for %s/%s�Could not create semanage handle�Could not delete SELinux user %s�Could not delete addr %s�Could not delete boolean %s�Could not delete file context for %s�Could not delete interface %s�Could not delete login mapping for %s�Could not delete port %s/%s�Could not delete the file context %s�Could not delete the port %s�Could not determine enforcing mode.
�Could not establish semanage connection�Could not extract key for %s�Could not list SELinux modules�Could not list SELinux users�Could not list addrs�Could not list booleans�Could not list file contexts�Could not list interfaces�Could not list local file contexts�Could not list login mappings�Could not list ports�Could not list roles for user %s�Could not list the file contexts�Could not list the ports�Could not modify SELinux user %s�Could not modify addr %s�Could not modify boolean %s�Could not modify file context for %s�Could not modify interface %s�Could not modify login mapping for %s�Could not modify port %s/%s�Could not open file %s
�Could not query addr %s�Could not query file context %s�Could not query file context for %s�Could not query interface %s�Could not query port %s/%s�Could not query seuser for %s�Could not query user for %s�Could not remove permissive domain %s (remove failed)�Could not set MLS level for %s�Could not set MLS range for %s�Could not set SELinux user for %s�Could not set active value of boolean %s�Could not set addr context for %s�Could not set exec context to %s.
�Could not set file context for %s�Could not set interface context for %s�Could not set mask for %s�Could not set message context for %s�Could not set mls fields in addr context for %s�Could not set mls fields in file context for %s�Could not set mls fields in interface context for %s�Could not set mls fields in port context for %s/%s�Could not set name for %s�Could not set permissive domain %s (module installation failed)�Could not set port context for %s/%s�Could not set role in addr context for %s�Could not set role in file context for %s�Could not set role in interface context for %s�Could not set role in port context for %s/%s�Could not set type in addr context for %s�Could not set type in file context for %s�Could not set type in interface context for %s�Could not set type in port context for %s/%s�Could not set user in addr context for %s�Could not set user in file context for %s�Could not set user in interface context for %s�Could not set user in port context for %s/%s�Could not start semanage transaction�Could not test MLS enabled status�Couldn't get default type.
�Create/Manipulate temporary files in /tmp�Cron�Current Enforcing Mode�Customized�DBUS System Daemon�Databases�Delete %s�Delete File Context�Delete Network Port�Delete SELinux User Mapping�Delete User�Description�Disable Audit�Disable SELinux protection for Cluster Server�Disable SELinux protection for Evolution�Disable SELinux protection for Hal daemon�Disable SELinux protection for NIS Password Daemon�Disable SELinux protection for NIS Transfer Daemon�Disable SELinux protection for NetworkManager�Disable SELinux protection for Thunderbird�Disable SELinux protection for acct daemon�Disable SELinux protection for amanda�Disable SELinux protection for amavis�Disable SELinux protection for apmd daemon�Disable SELinux protection for arpwatch daemon�Disable SELinux protection for auditd daemon�Disable SELinux protection for automount daemon�Disable SELinux protection for avahi�Disable SELinux protection for bluetooth daemon�Disable SELinux protection for canna daemon�Disable SELinux protection for cardmgr daemon�Disable SELinux protection for ciped daemon�Disable SELinux protection for clamd daemon�Disable SELinux protection for clamscan�Disable SELinux protection for clvmd�Disable SELinux protection for comsat daemon�Disable SELinux protection for courier daemon�Disable SELinux protection for cpucontrol daemon�Disable SELinux protection for cpuspeed daemon�Disable SELinux protection for crond daemon�Disable SELinux protection for cups hplip daemon�Disable SELinux protection for cupsd back end server�Disable SELinux protection for cupsd daemon�Disable SELinux protection for cupsd_lpd�Disable SELinux protection for cvs daemon�Disable SELinux protection for cyrus daemon�Disable SELinux protection for dbskkd daemon�Disable SELinux protection for dbusd daemon�Disable SELinux protection for dccd�Disable SELinux protection for dccifd�Disable SELinux protection for dccm�Disable SELinux protection for ddt daemon�Disable SELinux protection for devfsd daemon�Disable SELinux protection for dhcpc daemon�Disable SELinux protection for dhcpd daemon�Disable SELinux protection for dictd daemon�Disable SELinux protection for distccd daemon�Disable SELinux protection for dmesg daemon�Disable SELinux protection for dnsmasq daemon�Disable SELinux protection for dovecot daemon�Disable SELinux protection for entropyd daemon�Disable SELinux protection for fetchmail�Disable SELinux protection for fingerd daemon�Disable SELinux protection for freshclam daemon�Disable SELinux protection for fsdaemon daemon�Disable SELinux protection for games�Disable SELinux protection for gpm daemon�Disable SELinux protection for gss daemon�Disable SELinux protection for hostname daemon�Disable SELinux protection for hotplug daemon�Disable SELinux protection for howl daemon�Disable SELinux protection for http suexec�Disable SELinux protection for httpd rotatelogs�Disable SELinux protection for hwclock daemon�Disable SELinux protection for i18n daemon�Disable SELinux protection for imazesrv daemon�Disable SELinux protection for inetd child daemons�Disable SELinux protection for inetd daemon�Disable SELinux protection for innd daemon�Disable SELinux protection for iptables daemon�Disable SELinux protection for ircd daemon�Disable SELinux protection for irqbalance daemon�Disable SELinux protection for iscsi daemon�Disable SELinux protection for jabberd daemon�Disable SELinux protection for kadmind daemon�Disable SELinux protection for klogd daemon�Disable SELinux protection for krb5kdc daemon�Disable SELinux protection for ktalk daemons�Disable SELinux protection for kudzu daemon�Disable SELinux protection for locate daemon�Disable SELinux protection for lpd daemon�Disable SELinux protection for lrrd daemon�Disable SELinux protection for lvm daemon�Disable SELinux protection for mailman�Disable SELinux protection for mdadm daemon�Disable SELinux protection for monopd daemon�Disable SELinux protection for mrtg daemon�Disable SELinux protection for mysqld daemon�Disable SELinux protection for nagios daemon�Disable SELinux protection for named daemon�Disable SELinux protection for nessusd daemon�Disable SELinux protection for nfsd daemon�Disable SELinux protection for nmbd daemon�Disable SELinux protection for nrpe daemon�Disable SELinux protection for nscd daemon�Disable SELinux protection for nsd daemon�Disable SELinux protection for ntpd daemon�Disable SELinux protection for oddjob�Disable SELinux protection for oddjob_mkhomedir�Disable SELinux protection for openvpn daemon�Disable SELinux protection for pam daemon�Disable SELinux protection for pegasus�Disable SELinux protection for perdition daemon�Disable SELinux protection for portmap daemon�Disable SELinux protection for portslave daemon�Disable SELinux protection for postfix�Disable SELinux protection for postgresql daemon�Disable SELinux protection for pptp�Disable SELinux protection for prelink daemon�Disable SELinux protection for privoxy daemon�Disable SELinux protection for ptal daemon�Disable SELinux protection for pxe daemon�Disable SELinux protection for pyzord�Disable SELinux protection for quota daemon�Disable SELinux protection for radiusd daemon�Disable SELinux protection for radvd daemon�Disable SELinux protection for rdisc�Disable SELinux protection for readahead�Disable SELinux protection for restorecond�Disable SELinux protection for rhgb daemon�Disable SELinux protection for ricci�Disable SELinux protection for ricci_modclusterd�Disable SELinux protection for rlogind daemon�Disable SELinux protection for rpcd daemon�Disable SELinux protection for rshd�Disable SELinux protection for rsync daemon�Disable SELinux protection for saslauthd daemon�Disable SELinux protection for scannerdaemon daemon�Disable SELinux protection for sendmail daemon�Disable SELinux protection for setrans�Disable SELinux protection for setroubleshoot daemon�Disable SELinux protection for slapd daemon�Disable SELinux protection for slrnpull daemon�Disable SELinux protection for smbd daemon�Disable SELinux protection for snmpd daemon�Disable SELinux protection for snort daemon�Disable SELinux protection for sound daemon�Disable SELinux protection for soundd daemon�Disable SELinux protection for spamd daemon�Disable SELinux protection for speedmgmt daemon�Disable SELinux protection for squid daemon�Disable SELinux protection for ssh daemon�Disable SELinux protection for stunnel daemon�Disable SELinux protection for swat daemon�Disable SELinux protection for sxid daemon�Disable SELinux protection for syslogd daemon�Disable SELinux protection for system cron jobs�Disable SELinux protection for tcp daemon�Disable SELinux protection for telnet daemon�Disable SELinux protection for tftpd daemon�Disable SELinux protection for the web browsers�Disable SELinux protection for transproxy daemon�Disable SELinux protection for udev daemon�Disable SELinux protection for uml daemon�Disable SELinux protection for updfstab daemon�Disable SELinux protection for uptimed daemon�Disable SELinux protection for uucpd daemon�Disable SELinux protection for vmware daemon�Disable SELinux protection for watchdog daemon�Disable SELinux protection for winbind daemon�Disable SELinux protection for xdm daemon�Disable SELinux protection for xen control�Disable SELinux protection for xen daemon�Disable SELinux protection for xfs daemon�Disable SELinux protection for ypbind daemon�Disable SELinux protection for ypserv daemon�Disabled�Disabled
Permissive
Enforcing
�Do not allow any processes to load kernel modules�Do not allow any processes to modify kernel SELinux policy�Do not allow transition to sysadm_t, sudo and su effected�Do not audit things that we know to be broken but which are not security risks�Edit Network Port�Enable Audit�Enable/Disable additional audit rules, that are normally not reported in the log files.�Enforcing�Enter complete path for executable to be confined.�Enter complete path to init script used to start the confined application.�Enter unique name for the confined application or user role.�Error allocating memory.
�Error allocating shell's argv0.
�Error changing uid, aborting.
�Error connecting to audit system.
�Error dropping SETUID capability, aborting
�Error dropping capabilities, aborting
�Error freeing caps
�Error initializing capabilities, aborting.
�Error resetting KEEPCAPS, aborting
�Error sending audit message.
�Error setting KEEPCAPS, aborting
�Error setting capabilities, aborting
�Error! Could not open %s.
�Error! Shell is not valid.
�Error: multiple levels specified
�Error: multiple roles specified
�Error: multiple types specified
�Error: you are not allowed to change levels on a non secure terminal
�Executable�Existing User Roles�Existing_User�Failed to close tty properly
�File
Specification�File
Type�File Contexts file�File Labeling�File Specification�File Type�File context for %s is defined in policy, cannot be deleted�File context for %s is not defined�Filter�GPL�Games�Generate new policy module�Group View�HTTPD Service�Init script�Interacts with the terminal�Interface %s is defined in policy, cannot be deleted�Interface %s is not defined�Interface file�Internet Services Daemon (inetd)�Internet Services Daemon are daemons started by xinetd�Invalid file specification�Kerberos�Labeling�Linux Group %s does not exist�Linux User %s does not exist�List View�Load Policy Module�Load policy module�Lockdown...�Login
Name�Login '%s' is required�Login Name�Login mapping for %s is defined in policy, cannot be deleted�Login mapping for %s is not defined�MCS Level�MCS Range�MLS�MLS/�MLS/
MCS Range�MLS/MCS
Level�MLS/MCS Range�Memory Protection�Minimal Terminal User Role�Minimal X Windows User Role�Modify %s�Modify File Context�Modify SELinux User Mapping�Modify User�Modify an existing login user record.�Module %s.pp already loaded in current policy.
Do you want to continue?�Module Name�Mount�NFS�NIS�Name�Name Service�Network Configuration�Network Port�No context in file %s
�Node Address is required�Node Netmask is required�Not yet implemented�Options Error %s �Out of memory!
�Password:�Permissive�Polgen�Policy Directory�Policy Module�Port�Port %s/%s already defined�Port %s/%s is defined in policy, cannot be deleted�Port %s/%s is not defined�Port Number�Port is required�Port number "%s" is not valid. 0 < PORT_NUMBER < 65536 �Ports must be numbers or ranges of numbers from 1 to %d �Prefix�Printing�Process Domain�Proto�Protocol�Protocol udp or tcp is required�Red Hat 2007�Relabel on next reboot.�Remove loadable policy module�Requires at least one category�Requires prefix or roles�Requires prefix, roles, level or range�Requires setype�Requires setype or serange�Requires setype, serange or seuser�Requires seuser or serange�Revert boolean setting to system default�Role�Root Admin User Role�Run booleans lockdown wizard�SASL authentication server�SELinux
User�SELinux Administration�SELinux Interface�SELinux Policy Generation Tool�SELinux Port
Type�SELinux Port Type�SELinux Roles�SELinux Service Protection�SELinux Type�SELinux Type is required�SELinux User�SELinux boolean�SELinux fcontext�SELinux policy is not managed or store cannot be accessed.�SELinux user %s is defined in policy, cannot be deleted�SELinux user %s is not defined�SELinux user '%s' is required�SSH�Samba�Select Management Object�Select Ports�Select Root Administrator User Role, if this user will be used to administer the machine while running as root. This user will not be able to login to the system directly.�Select directory to generate policy files in�Select directory(s) that the confined application owns and writes into�Select executable file to be confined.�Select file(s) that confined application creates or writes�Select if you wish to relabel then entire file system on next reboot. Relabeling can take a very long time, depending on the size of the system. If you are changing policy types or going from disabled to enforcing, a relabel is required.�Select init script file to be confined.�Select the domains that you would like this user administer.�Select the user roles that will transiton to this applications domains.�Selinux
File Type�Semanage transaction already in progress�Semanage transaction not in progress�Sends audit messages�Sends email�Setup Script�Sorry, -l may be used with SELinux MLS support.
�Sorry, newrole may be used only on a SELinux kernel.
�Sorry, run_init may be used only on a SELinux kernel.
�Spam Protection�Squid�Standard Init Daemon�Standard Init Daemon are daemons started on boot via init scripts. Usually requires a script in /etc/rc.d/init.d�Status�System Default Enforcing Mode�System Default Policy Type: �This user can login to a machine via X or terminal. By default this user will have no setuid, no networking, no sudo, no su�This user will login to a machine only via a terminal or remote login. By default this user will have no setuid, no networking, no su, no sudo.�To make this policy package active, execute:�Toggle between Customized and All Booleans�Toggle between Customized and All Ports�Toggle between all and customized file context�Transition staff SELinux user to Web Browser Domain�Transition sysadm SELinux user to Web Browser Domain�Transition user SELinux user to Web Browser Domain�Transition xguest SELinux user to Web Browser Domain�Type %s_t already defined in current policy.
Do you want to continue?�Type Enforcement file�Type is required�USAGE: run_init <script> <args ...>
where: <script> is the name of the init script to run,
<args ...> are the arguments to that script.�USER Types automatically get a tmp type�Unable to allocate memory for new_context�Unable to clear environment
�Unable to obtain empty signal set
�Unable to restore the environment, aborting
�Unable to restore tty label...
�Unable to set SIGHUP handler
�Universal SSL tunnel�Unknown or missing protocol�Unreserved Ports (>1024)�Usage %s -L�Usage %s -L -l user�Usage %s -d File ...�Usage %s -l -d user ...�Usage %s -l CATEGORY user ...�Usage %s -l [[+|-]CATEGORY],...]q user ...�Usage %s CATEGORY File ...�Usage %s [[+|-]CATEGORY],...]q File ...�Use -- to end option list. For example�User Application�User Application are any application that you would like to confine that is started by a user�User Mapping�User Privs�User Role�User with full networking, no setuid applications without transition, no su, can sudo to Root Administration Roles�User with full networking, no setuid applications without transition, no sudo, no su.�Uses Pam for authentication�Uses dbus�Uses nsswitch or getpw* calls�Verify Name�Version�Warning! Could not retrieve tty information.
�Warning! Could not restore context for %s
�Web Application/Script (CGI)�Web Applications�Web Applications/Script (CGI) CGI scripts started by the web server (apache)�Writes syslog messages �XEN�XServer�You must add at least one role for %s�You must enter a executable�You must enter a name for your confined process/user�You must enter the executable path for your confined process�You must select a user�You must specify one of the following values: %s�_Delete�_Properties�all�all files
regular file
directory
character device
block device
socket
symbolic link
named pipe
�authentication failed.
�cannot find valid entry in the passwd file.
�chcat -- -CompanyConfidential /docs/businessplan.odt�chcat -l +CompanyConfidential juser�error on reading PAM service configuration.
�failed to build new range with level %s
�failed to convert new context to string
�failed to exec shell
�failed to get account information
�failed to get new context.
�failed to get old_context.
�failed to initialize PAM
�failed to set PAM_TTY
�failed to set new range %s
�failed to set new role %s
�failed to set new type %s
�getpass cannot open /dev/tty
�global�label37�label38�label39�label41�label42�label44�label50�label59�newrole: %s: error on line %lu.
�newrole: failure forking: %s�newrole: incorrect password for %s
�newrole: service name configuration hashtable overflow
�off�on�pppd�rsync�run_init: incorrect password for %s
�system-config-selinux�translator-credits�type�unknown�usage: %s [-qi]
�use_syslog must be a boolean value �Project-Id-Version: ja
Report-Msgid-Bugs-To:
POT-Creation-Date: 2014-10-17 23:48+0000
PO-Revision-Date: 2010-07-28 10:52+0900
Last-Translator: Kiyoto Hashida <khashida@redhat.com>
Language-Team: Japanese <jp@li.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Language: ja
X-Generator: KBabel 1.11.4
Plural-Forms: Plural-Forms: nplurals=2; plural=(n!=1);
�%s å€æŽãããã©ãã«ã
�%s ã¯ãã§ã« %s ã«ãããŸã�%s ã¯æå¹ãªã³ã³ããã¹ãã§ã¯ãããŸãã
�%s 㯠%s ã«ãããŸãã�%s ã¯ãã£ã¬ã¯ããªã§ãªããã°ãªããŸãã�%s! %s ã®çŸåšã®ã³ã³ããã¹ããååŸã§ããŸããã§ãããåã©ãã«ãè¡ã£ãŠãã tty ã§ã¯ãããŸããã
�%s! %s ã®æ°ããã³ã³ããã¹ããååŸã§ããŸããã§ããã åã©ãã«ãè¡ã£ãŠãã tty ã§ã¯ãããŸããã
�%s! %s ã®æ°ããã³ã³ããã¹ããèšå®ã§ããŸããã§ãã
�%s: èŠæ±ãããããªã·ãŒãšåŒ·å¶ã¢ãŒããããŒãåºæ¥ãŸãã: %s
�%s: ããªã·ãŒãããŒãã§ããŸãã: %s
�%s: ããªã·ãŒã¯ãã§ã«ããŒãæžã¿ã§åæããŒããå¿
èŠã§ã
�******************** éèŠ ***********************
�...�600-1024�<b>ã¢ããªã±ãŒã·ã§ã³</b>�<b>ãã°ã€ã³ãŠãŒã¶ãŒ</b>�<b>Root ãŠãŒã¶ãŒ</b>�<b>éžæ:</b>�<b>TCP ããŒã</b>�<b>UDP ããŒã</b>�è¿œå �%s ãè¿œå �ããŒãªã¢ã³ãã€ã¢ãã°ãè¿œå �ãã¡ã€ã«ã³ã³ããã¹ãã®è¿œå �ãããã¯ãŒã¯ããŒãã®è¿œå �SELinux ãã°ã€ã³ãããã³ã°ãè¿œå �SELinux ãããã¯ãŒã¯ããŒããè¿œå �SELinux ãŠãŒã¶ãŒã®è¿œå �SELinux ãŠãŒã¶ãŒãããã³ã°ã®è¿œå �ãŠãŒã¶ãŒãè¿œå �ã¢ãã¬ã¹ %s ã¯ããªã·ãŒå
ã§å®çŸ©ãããŠããŸããåé€ã§ããŸãã�ã¢ãã¬ã¹ %s ã¯å®çŸ©ãããŠããŸãã�管çè
�管çãŠãŒã¶ãŒã®ããŒã«�å
šãŠ�SELinux webadm ãŠãŒã¶ãŒã«ãéç¹æš©ãŠãŒã¶ãŒã®ããŒã ãã£ã¬ã¯ããªãŒã®ç®¡çãèªãã�SELinux webadm ãŠãŒã¶ãŒã«ãéç¹æš©ãŠãŒã¶ãŒã®ããŒã ãã£ã¬ã¯ããªãŒã®èªã¿èŸŒã¿ãèªãã�Samba ã« nfs ãã£ã¬ã¯ããªãŒãå
±æããããšãèªãã�Spam Assassin ããŒã¢ã³ã«ãããã¯ãŒã¯ã¢ã¯ã»ã¹ãèªãã�X-Windows ãµãŒããŒã«ã¡ã¢ãªé åãå®è¡å¯èœãšæžèŸŒã¿å¯èœã®äž¡æ¹ãšããŠãããããããšãèªãã�å
šãŠã®ããŒã¢ã³ãå²ãåœãŠãããŠããªã tty ã䜿çšã§ããããšãèªããŸã�å
šãŠã®ããŒã¢ã³ãã³ã¢ãã¡ã€ã«ã / ãžæžã蟌ãã®ãèªããŸã�cdrecord ã«ãããããªå
容ã®èªã¿èŸŒã¿ãèªãããnfsãsambaãå¯æ¬æ§è£
眮ããŠãŒã¶ãŒ tempãä¿¡é Œã§ããªãå
容ã®ãã¡ã€ã«�ã¯ã©ã€ã¢ã³ãã« X å
±æã¡ã¢ãªã«æžã蟌ãããšãèªãã�ããŒã¢ã³ã« NIS ãšãã£ããã«å®è¡ããããšãèªãã�evolution ãš thunderbird ã«ãŠãŒã¶ãŒãã¡ã€ã«ãèªã¿èŸŒãã®ãèªãã�gadmin SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�ã²ã¹ã SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�java å®è¡å¯èœã¹ã¿ãã¯ãèªãã�mount ã«ãããããã£ã¬ã¯ããªãŒãããŠã³ãããããšãèªãã�mount ã«ãããããã¡ã€ã«ãããŠã³ãããããšãèªãã�mplayer å®è¡å¯èœã¹ã¿ãã¯ãèªãã�éåžžãŠãŒã¶ãŒã« ping ãå®è¡ããããšãèªãã�pppd ã«äžè¬ãŠãŒã¶ãŒã®ããã«å®è¡ããããšãèªãã�hotplug ã insmod ã®ãããªç¹æš©ãŠãŒãã£ãªãã£ãŒã«å¶éãªãã§å®è¡ããããšãèªãã�ããã°ã©ã ã«æšæºä»¥å€ã®å Žæã«ãããã¡ã€ã«ãèªã¿èŸŒãããšãèªãã (default_t)�rc ã¹ã¯ãªããã«ãrc ã¹ã¯ãªããã«ããèµ·åããããã¡ã€ã³è»¢äœãæã«å®çŸ©ãããŠããªãããŒã¢ã³ãå«ããå¶éãªãã§å®è¡ããããšãèªãã�æšæºãŠãŒã¶ãŒã«çŽæ¥ããŠã¹ã¢ã¯ã»ã¹ãèªãã (X ãµãŒããŒã®ã¿èªãã)�rpm ã«å¶éãªãã§å®è¡ããããšãèªãã�sasl èªèšŒãµãŒããŒã« /etc/shadow ãèªã¿èŸŒãããšãèªãã�spamd ã«ããŒã ãã£ã¬ã¯ããªãŒãžã®ã¢ã¯ã»ã¹ãèªãã�squid ããŒã¢ã³ã«ãããã¯ãŒã¯ãžã®æ¥ç¶ãèªãã�ssh ã« sysadm_r:sysadm_t ãšããŠãã°ã€ã³ããããšãèªãã�ssh ã«ããŒã¢ã³ãšããŠã§ã¯ãªããinetd ããå®è¡ããããšãèªãã�ssh ã« ssh-keysign ãå®è¡ããããšãèªãã�ã¹ã¿ãã SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�ã¹ã¿ãããŠã§ããã©ãŠã¶ãŒã«ããŒã ãã£ã¬ã¯ããªãŒã«æžã蟌ãããšãèªãã�staff_r ãŠãŒã¶ãŒã« sysadm ããŒã ãã£ã¬ã¯ããªãŒãæãã(~/.bashrc ã®ãããª) ãã¡ã€ã«ãèªãããšãèªãã�stunnel ããŒã¢ã³ã« xinetd ã®å€ã§ã¹ã¿ã³ãã¢ããŒã³ãšããŠå®è¡ããããšãèªãã�sysadm SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�sysadm_t ã«çŽæ¥ããŒã¢ã³ãèµ·åããããšãèªãã�mozilla ãã©ãŠã¶ãŒã«ãŠãŒã¶ãŒãã¡ã€ã«ãèªã¿èŸŒãã®ãèªãã�å¶éãããŠããªã SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�å¶éãããŠããªããã®ã« unconfined_execmem ã« dyntrans ããããšãèªãã�ã©ãã«ã®ãªããã±ããããããã¯ãŒã¯ã«æµããã®ãèªãã�ãŠãŒã¶ãŒ SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�ãŠãŒã¶ãŒã« mysql ãœã±ããã«æ¥ç¶ããããšãèš±å¯�ãŠãŒã¶ãŒã« postgres ãœã±ããã«æ¥ç¶ããããšãèªãã�ãŠãŒã¶ãŒã« ext å±æ§ã§ãªããã¡ã€ã«ã®èªã¿æžããèªãã (FATãCDROMããããããŒ)�ãŠãŒã¶ãŒã« stat ttyfiles ãèªãã�user_r ã« su ããsudoãuserhelper çµç±ã§ sysadm_r ã«éããããšãèªãããããã§ãªããã° staff_r ã®ã¿ãããã§ãã�ãŠãŒã¶ãŒã«ãããã¯ãŒã¯ã€ã³ã¿ãŒãã§ãŒã¹ãå¶åŸ¡ããããšãèªãã (USERCTL=true ãå¿
èŠ)�ãŠãŒã¶ãŒã« mount ã³ãã³ããå®è¡ããããšãèªãã�ãŠãŒã¶ãŒã« TCP ãµãŒããŒãå®è¡ããããšãèªãã (ããŒããšçµã³ã€ããåäžãã¡ã€ã³ãå€éšã®ãŠãŒã¶ãŒããã®æ¥ç¶ãåãä»ãã) ãããç¡å¹ã«ãããš FTP ãååã¢ãŒãã«ããä»ã®ãããã³ã«ãå€æŽãããããããªã�ãŠãŒã¶ãŒã« dmesg ã³ãã³ããå®è¡ããããšãèªãã�ãŠãŒã¶ãŒã« usb è£
眮ã®èªã¿æžããèªãã�xdm ã sysadm_r:sysadm_t ãšããŠãã°ã€ã³ããããšãèªãã�xen ã«ç©çãã£ã¹ã¯è£
眮ãèªã¿æžãããããšãèªãã�xguest SELinux ãŠãŒã¶ãŒã¢ã«ãŠã³ãã«èªåã®ããŒã ãã£ã¬ã¯ããªã /tmp ãã£ã¬ã¯ããªã«ãããã¡ã€ã«ã®å®è¡ãèš±å¯ãã�xinetd ã«ããããèµ·åãããã¡ã€ã³è»¢äœãæã«å®çŸ©ãããŠããªããµãŒãã¹ãå«ããå¶éãªãã§å®è¡ããããšãèªãã�ã¢ããªã±ãŒã·ã§ã³�%s '%s' ãæ¬åœã«åé€ãããã®ã§ãã?�äžæ£ãªåœ¢åŒã® %s: ã¬ã³ãŒã %s�ããŒãªã¢ã³å€�boolean %s ã¯ããªã·ãŒã§å®çŸ©ãããŠããŸãã åé€ã§ããŸãã�boolean %s ã¯å®çŸ©ãããŠããŸãã�ããŒãªã¢ã³å€å�CVS�ä»ã®ã¿ã€ãã®ã«ããŽãªãŒã§ +/- ãçµåã§ããŸãã�è€æ°ã®æ床ãæãŠãŸãã�%s 㧠'+' ã䜿ã£ãŠæ床ã¬ãã«ãä¿®æ£ããããšãã§ããŸãã�ã·ã£ããŒãã¹ã¯ãŒããã¡ã€ã«ã«è©²åœãããšã³ããªãèŠã€ãããŸããã
�ããªã·ãŒ store ãèªã¿èŸŒããŸãã�ããã»ã¹ã¢ãŒãã enforcing ã«å€æŽããŸã�ããã»ã¹ã¢ãŒãã permissive ã«å€æŽããŸãã�ããªã·ãŒã¿ã€ããå€æŽãããšæ¬¡ã®èµ·åæã«å
šãã¡ã€ã«ã·ã¹ãã ã®ãªã©ãã«ãåŒãèµ·ããŸãããã¡ã€ã«ã·ã¹ãã ã®å€§ããã«äŸåããŠãªã©ãã«ã¯é·ãæéãå¿
èŠãšããŸããç¶ããŸãã?�SELinux ãç¡å¹ã«ããã«ã¯åèµ·åãå¿
èŠã§ããèŠããããŸãããåŸã« SELinux ãæå¹ã«æ»ãããšã«æ±ºããããã·ã¹ãã ã¯ãªã©ãã«ãå¿
èŠã«ãªããŸããåã« SELinux ãã·ã¹ãã ã«åé¡ãèµ·ãããŠããããç¥ãããã®ãªãã°ããšã©ãŒãèšé²ããã ã㧠SELinux ããªã·ãŒã匷å¶ããªã蚱容ã¢ãŒãã«ããããšãã§ããŸãã蚱容ã¢ãŒãã¯åèµ·åã¯å¿
èŠã§ã¯ãããŸãããç¶ããŸãã?�SELinux ãæå¹ã«å€æŽãããšæ¬¡ã®èµ·åæã«å
šãã¡ã€ã«ã·ã¹ãã ã®ãªã©ãã«ãåŒãèµ·ããŸãããã¡ã€ã«ã·ã¹ãã ã®å€§ããã«äŸåããŠãªã©ãã«ã¯é·ãæéãå¿
èŠãšããŸããç¶ããŸãã?�äºææ§�SELinux ãèšå®ãã�ã³ã³ããã¹ã�Copyright (c)2006 Red Hat, Inc.
Copyright (c) 2006 Dan Walsh <dwalsh@redhat.com>�SELinux ãŠãŒã¶ãŒ %s ãè¿œå ã§ããŸããã§ãã�ã¢ãã¬ã¹ %s ãè¿œå ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããè¿œå ã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ãè¿œå ã§ããŸããã§ãã�%s ã®ãã°ã€ã³ãããã³ã°ãè¿œå ã§ããŸããã§ãã�ããŒã %s/%s ãè¿œå ã§ããŸããã§ãã�ãã¬ãã£ãã¯ã¹ %s ã %s ã«è¿œå ã§ããŸããã§ãã�ããŒã« %s ã %s ã«è¿œå ã§ããŸããã§ãã� SELinux ãŠãŒã¶ãŒ %s ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�ã¢ãã¬ã¹ %s ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�boolean %s ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�%s ã®ãã°ã€ã³ãããã³ã°ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�ããŒã %s/%s ãå®çŸ©ãããŠããã確èªã§ããŸããã§ãã�ãã£ã¹ã¯ãªãã¿ãŒãçµäºã§ããŸããã§ããã
�semanage ãã©ã³ã¶ã¯ã·ã§ã³ãã³ãããã§ããŸããã§ãã�%s ã® SELinux ãŠãŒã¶ãŒãäœæã§ããŸããã§ãã�%s ã®ããŒãäœæã§ããŸããã§ãã�%s/%s ã®ããŒãäœæã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ãäœæã§ããŸããã§ãã�%s ã®ã³ã³ããã¹ããäœæã§ããŸããã§ãã�%s/%s ã®ã³ã³ããã¹ããäœæã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããäœæã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ãäœæã§ããŸããã§ãã�%s ã®ããŒãäœæã§ããŸããã§ãã�%s ã®ãã°ã€ã³ãããã³ã°ãäœæã§ããŸããã§ãã�%s/%s ã®ããŒããäœæã§ããŸããã§ãã�semanage ãã³ãã«ãäœæã§ããŸããã§ãã�SELinux ãŠãŒã¶ãŒ %s ãåé€ã§ããŸããã§ãã�ã¢ãã¬ã¹ %s ãåé€ã§ããŸããã§ãã�boolean %s ãåé€ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããåé€ã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ãåé€ã§ããŸããã§ãã�%s ã®ãã°ã€ã³ãããã³ã°ãåé€ã§ããŸããã§ãã�ããŒã %s/%s ãåé€ã§ããŸããã§ãã�ãã¡ã€ã«ã³ã³ããã¹ã %s ãåé€ã§ããŸããã§ãã�ããŒã %s ãåé€ã§ããŸããã§ãã�æœè¡ã¢ãŒãã確å®ã§ããŸããã§ããã
�semanage æ¥ç¶ã確ç«ã§ããŸããã§ãã�%s ã®ããŒãæœåºã§ããŸããã§ãã�SELinux ã®ã¢ãžã¥ãŒã«äžèŠ§ã衚瀺ã§ããŸããã§ãã�SELinux ãŠãŒã¶ãŒã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ã¢ãã¬ã¹ã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�boolean ã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ãã¡ã€ã«ã³ã³ããã¹ãã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ããŒã«ã«ãã¡ã€ã«ã®ã³ã³ããã¹ãäžèŠ§ã衚瀺ã§ããŸããã§ãã�ãã°ã€ã³ãããã³ã°ã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ããŒãã®äžèŠ§ã衚瀺ã§ããŸããã§ãã�ãŠãŒã¶ãŒ %s ã®ããŒã«äžèŠ§ã衚瀺ã§ããŸããã§ãã�ãã¡ã€ã«ã³ã³ããã¹ããäžèŠ§è¡šç€ºã§ããŸããã§ãã�ããŒããäžèŠ§è¡šç€ºã§ããŸããã§ãã�SELinux ãŠãŒã¶ãŒ %s ãä¿®æ£ã§ããŸããã§ãã�ã¢ãã¬ã¹ %s ãä¿®æ£ã§ããŸããã§ãã�boolean %s ãä¿®æ£ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããä¿®æ£ã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ãä¿®æ£ã§ããŸããã§ãã�%s ã®ãã°ã€ã³ãããã³ã°ãä¿®æ£ã§ããŸããã§ãã�ããŒã %s/%s ãä¿®æ£ã§ããŸããã§ãã�ãã¡ã€ã« %s ãéããŸããã§ãã
�ã¢ãã¬ã¹ %s ãã¯ãšãªã§ããŸããã§ãã�ãã¡ã€ã«ã³ã³ããã¹ã %s ãã¯ãšãªãŒã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããã¯ãšãªãŒã§ããŸããã§ãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ãã¯ãšãªãŒã§ããŸããã§ãã�ããŒã %s/%s ãã¯ãšãªãŒã§ããŸããã§ãã�%s ã® seuser ãã¯ãšãªãŒã§ããŸããã§ãã�%s ã®ãŠãŒã¶ãŒãã¯ãšãªãŒã§ããŸããã§ãã�蚱容ãã¡ã€ã³ %s ã®åé€ãã§ããŸããã§ãã (åé€ã«å€±æ)�MLS ã¬ãã«ã %s ã«èšå®ã§ããŸããã§ãã�%s ã® MLS ç¯å²ãèšå®ã§ããŸããã§ãã�%s ã® SELinux ãŠãŒã¶ãŒãèšå®ã§ããŸããã§ãã�boolean %s ã®ã¢ã¯ãã£ããªå€ãèšå®ã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ã³ã³ããã¹ããèšå®ã§ããŸããã§ãã�exec ã³ã³ããã¹ãã %s ã«èšå®ã§ããŸããã§ããã
�%s ã®ãã¡ã€ã«ã³ã³ããã¹ããèšå®ã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ã³ã³ããã¹ããèšå®ã§ããŸããã§ãã�%s ã®ãã¹ã¯ãèšå®ã§ããŸããã§ãã�%s ã®ã¡ãã»ãŒãžã³ã³ããã¹ããèšå®ã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ã³ã³ããã¹ãã« mls ãã£ãŒã«ããèšå®ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã« mls ãã£ãŒã«ããèšå®ã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ã³ã³ããã¹ãã« mls ãã£ãŒã«ããèšå®ã§ããŸããã§ãã�%s/%s ã®ããŒãã³ã³ããã¹ãã« mls ãã£ãŒã«ããèšå®ã§ããŸããã§ãã�%s ã®ååãèšå®ã§ããŸããã§ãã�蚱容ãã¡ã€ã³ %s ãèšå®ã§ããŸããã§ãã (ã¢ãžã¥ãŒã«ã®ã€ã³ã¹ããŒã«ã«å€±æ)�%s/%s ã®ããŒãã³ã³ããã¹ããèšå®ã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ã³ã³ããã¹ãã«ããŒã«ãèšå®ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã«ããŒã«ãèšå®ã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ã³ã³ããã¹ãã«ããŒã«ãèšå®ã§ããŸããã§ãã�%s/%s ã®ããŒãã³ã³ããã¹ãã«ããŒã«ãèšå®ã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ã³ã³ããã¹ãã«ã¿ã€ããèšå®ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã«ã¿ã€ããèšå®ã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ã³ã³ããã¹ãã«ã¿ã€ããèšå®ã§ããŸããã§ãã�%s/%s ã®ããŒãã³ã³ããã¹ãã«ã¿ã€ããèšå®ã§ããŸããã§ãã�%s ã®ã¢ãã¬ã¹ã³ã³ããã¹ãã«ãŠãŒã¶ãŒãèšå®ã§ããŸããã§ãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã«ãŠãŒã¶ãŒãèšå®ã§ããŸããã§ãã�%s ã®ã€ã³ã¿ãŒãã§ãŒã¹ã³ã³ããã¹ãã«ãŠãŒã¶ãŒãèšå®ã§ããŸããã§ãã�%s/%s ã®ããŒãã³ã³ããã¹ãã«ãŠãŒã¶ãŒãèšå®ã§ããŸããã§ãã�semanage ãã©ã³ã¶ã¯ã·ã§ã³ãèµ·åã§ããŸããã§ãã�MLS ãæå¹ã«ããç¶æ
ããã¹ãã§ããŸããã§ãã�ããã©ã«ãã¿ã€ããååŸã§ããŸããã§ããã
� /tmp å
ã®äžæãã¡ã€ã«ã®äœæ/æäœãããŸã�Cron�çŸåšã®åŒ·å¶ã¢ãŒã�ã«ã¹ã¿ã å�DBUS ã·ã¹ãã ããŒã¢ã³�ããŒã¿ããŒã¹�%s ãåé€�ãã¡ã€ã«ã³ã³ããã¹ãã®åé€�ãããã¯ãŒã¯ããŒãã®åé€�SELinux ãŠãŒã¶ãŒãããã³ã°ã®åé€�ãŠãŒã¶ãŒãåé€�説æ�ç£æ»ãç¡å¹ã«ãã�ã¯ã©ã¹ã¿ãŒãµãŒããŒçšã® SELinux ä¿è·ãç¡å¹ã«ãã�Evolution çšã® SELinux ä¿è·ãç¡å¹ã«ãã�Hal ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�NIS ãã¹ã¯ãŒãããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�NIS 転éããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�NetworkManager çšã® SELinux ä¿è·ãç¡å¹ã«ãã�Thunderbird çšã® SELinux ä¿è·ãç¡å¹ã«ãã�acct ããŒã¢ã³ã® SELinux ä¿è·ãç¡å¹ã«ããŸã�amanda çšã® SELinux ä¿è·ãç¡å¹ã«ãã�amavis çšã® SELinux ä¿è·ãç¡å¹ã«ãã�apmd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�arpwatch ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�auditd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�automount ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�avahi çšã® SELinux ä¿è·ãç¡å¹ã«ãã�bluetooth ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�canna ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cardmgr ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ciped ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�clamd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�clamscan çšã® SELinux ä¿è·ãç¡å¹ã«ãã�clvmd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�comsat ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�courier ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cpucontrol ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cpuspeed ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�crond ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cups hplip ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cupsd ããã¯ãšã³ããµãŒããŒçšã® SELinux ä¿è·ãç¡å¹ã«ãã�cupsd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cupsd_lpd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cvs ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�cyrus ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dbskkd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dbusd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dccd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dccifd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dccm çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ddt ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�devfsd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dhcpc ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dhcpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dictd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�distccd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dmesg ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dnsmasq ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�dovecot ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�entropyd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�fetchmail çšã® SELinux ä¿è·ãç¡å¹ã«ãã�fingerd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�freshclam ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�fsdaemon ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ã²ãŒã çšã® SELinux ä¿è·ãç¡å¹ã«ãã�gpm ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�gss ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�hostname ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�hotplug ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�howl ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�http suexec çšã® SELinux ä¿è·ãç¡å¹ã«ãã�httpd 亀代ãã°çšã® SELinux ä¿è·ãç¡å¹ã«ãã�hwclock ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�i18n ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�imazesrv ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�inetd åããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�inetd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�innd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�iptables ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ircd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�irqbalance ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�iscsi ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�jabberd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�kadmind ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�klogd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�krb5kdc ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ktalk ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�kudzu ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�locate ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�lpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�lrrd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�lvm ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�mailman çšã® SELinux ä¿è·ãç¡å¹ã«ãã�mdadm ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�monopd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�mrtg ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�mysqld ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nagios ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�named ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nessusd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nfsd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nmbd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nrpe ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nscd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�nsd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ntpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�oddjob çšã® SELinux ä¿è·ãç¡å¹ã«ãã�oddjob mkhomedir çšã® SELinux ä¿è·ãç¡å¹ã«ãã�openvpn ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�pam ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�pegasus çšã® SELinux ä¿è·ãç¡å¹ã«ãã�perdition ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�portmap ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�portslave ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�postfix çšã® SELinux ä¿è·ãç¡å¹ã«ãã�postgresql ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�pptp çšã® SELinux ä¿è·ãç¡å¹ã«ãã�prelink ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�privoxy ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ptal ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�pxe ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�pyzord çšã® SELinux ä¿è·ãç¡å¹ã«ãã�quota ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�radiusd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�radvd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rdisc çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rdisc çšã® SELinux ä¿è·ãç¡å¹ã«ãã�restorecond çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rhgb ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ricci çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ricci_modclusterd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rlogind ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rpcd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rshd çšã® SELinux ä¿è·ãç¡å¹ã«ãã�rsync ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�saslauthd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�scannerdaemon ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�sendmail ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�setrans çšã® SELinux ä¿è·ãç¡å¹ã«ãã�setroubleshoot ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�slapd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�slrnpull ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�smbd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�snmpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�snort ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�sound ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�soundd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�spamd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�speedmgmt ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�squid ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ssh ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�stunnel ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�swat ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�sxid ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�syslogd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ã·ã¹ãã cron ãžã§ãçšã® SELinux ä¿è·ãç¡å¹ã«ãã�tcp ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�telnet ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�tftpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ãŠã§ããã©ãŠã¶ãŒçšã® SELinux ä¿è·ãç¡å¹ã«ãã�transproxy ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�udev ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�uml ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�updfstab ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�uptimed ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�uucpd ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�vmware ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�watchdog ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�winbind ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�xdm ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�xen control çšã® SELinux ä¿è·ãç¡å¹ã«ãã�xen ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�xfs ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ypbind ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ypserv ããŒã¢ã³çšã® SELinux ä¿è·ãç¡å¹ã«ãã�ç¡å¹�ç¡å¹
蚱容
匷å¶
�ã©ã®ããã»ã¹ã«ãã«ãŒãã«ã¢ãžã¥ãŒã«ãããŒãããããšãèªããªã�ã©ã®ããã»ã¹ã«ãã«ãŒãã« SELinux ããªã·ãŒãå€æŽããããšãèªããªã�sysadm_t ãžã®è»¢äœãèªããªããsudo ãš su ã圱é¿ããŠãã�å£ããŠããããšãç¥ã£ãŠããããã»ãã¥ãªãã£ãªã¹ã¯ã®ãªãããšãåãã£ãŠãããã®ãç£æ»ããªã�ãããã¯ãŒã¯ããŒãã®ç·šé�ç£æ»ãæå¹ã«ãã�éåžžã¯ãã°ãã¡ã€ã«ã«å ±åãããªãè¿œå ã®ç£æ»ã«ãŒã«ãæå¹/ç¡å¹ã«ããã�匷å¶�å¶éããå®è¡ãã¡ã€ã«ã®ãã«ãã¹ãå
¥åããŠãã ããã�å¶éãããã¢ããªã±ãŒã·ã§ã³ã®èµ·åã«äœ¿çšãããåæåã¹ã¯ãªããã®ãã«ãã¹ãå
¥åããŠãã ããã�å¶éããã¢ããªã±ãŒã·ã§ã³ããŠãŒã¶ãŒããŒã«ã®ç¹æãªååãå
¥å�ã¡ã¢ãªã®å²ãåœãŠäžã«ãšã©ãŒãçºçããŸããã
�ã·ã§ã«ã® argv0 å²ãåœãŠäžã«ãšã©ãŒãçºçããŸããã
�uid ã®å€æŽäžã«ãšã©ãŒãçºçãäžæ¢ããŸãã
�ç£æ»ã·ã¹ãã ã«æ¥ç¶äžã«ãšã©ãŒãçºçããŸããã
�SETUID æ©èœãããããäžã«ãšã©ãŒãçºçãäžæ¢ããŸã
�æ©èœãããããäžã«ãšã©ãŒãçºçãäžæ¢ããŸãã
�caps ã解æŸäžã«ãšã©ãŒãçºç
�æ©èœã®åæåäžã«ãšã©ãŒãçºçãäžæ¢ããŸãã
�KEEPCAPS ã®ãªã»ããäžã«ãšã©ãŒãçºçãäžæ¢ããŸã
�ç£æ»ã¡ãã»ãŒãžã®éä¿¡äžã«ãšã©ãŒãçºçããŸããã
�KEEPCAPS ã®èšå®äžã«ãšã©ãŒãçºçãäžæ¢ããŸãã
�æ©èœã®èšå®äžã«ãšã©ãŒãçºçãäžæ¢ããŸãã
�ãšã©ãŒ! %s ãéããŸããã§ããã
�ãšã©ãŒãçºçããŸãããã·ã§ã«ãæå¹ã§ã¯ãããŸããã
�ãšã©ãŒ: è€æ°ã®ã¬ãã«ãæå®ãããŠããŸã
�ãšã©ãŒ: è€æ°ã®ããŒã«ãæå®ãããŠããŸã
�ãšã©ãŒ: è€æ°ã®ã¿ã€ããæå®ãããŠããŸã
�ãšã©ãŒ: ã»ãã¥ã¢ã§ã¯ãªã端æ«ã§ã¬ãã«ãå€æŽããããšã¯èš±å¯ãããŸãã
�å®è¡ãã¡ã€ã«�æ¢åãŠãŒã¶ãŒã®ããŒã«�æ¢åãŠãŒã¶ãŒïŒ_UïŒ�tty ã®æ£åžžçµäºã«å€±æããŸãã
�ãã¡ã€ã«
ä»æ§�ãã¡ã€ã«
ã¿ã€ã�ãã¡ã€ã«ã³ã³ããã¹ããã¡ã€ã«�ãã¡ã€ã«ã©ããªã³ã°�ãã¡ã€ã«ä»æ§�ãã¡ã€ã«ã¿ã€ã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã¯ããªã·ãŒã§å®çŸ©ãããŠããŸãã åé€ã§ããŸãã�%s ã®ãã¡ã€ã«ã³ã³ããã¹ãã¯å®çŸ©ãããŠããŸãã�ãã£ã«ã¿ãŒ�GPL�ã²ãŒã �æ°ããªã·ãŒã¢ãžã¥ãŒã«ã®çæ�ã°ã«ãŒã衚瀺�HTTPD ãµãŒãã¹�åæåã¹ã¯ãªãã�ã¿ãŒããã«ãšçžäºäœçš�ã€ã³ã¿ãŒãã§ãŒã¹ %s ã¯ããªã·ãŒã§å®çŸ©ãããŠããŸãã åé€ã§ããŸãã�ã€ã³ã¿ãŒãã§ãŒã¹ %s ã¯å®çŸ©ãããŠããŸãã�ã€ã³ã¿ãŒãã§ãŒã¹ãã¡ã€ã«�ã€ã³ã¿ãŒããããµãŒãã¹ããŒã¢ã³ (inetd)�ã€ã³ã¿ãŒããããµãŒãã¹ããŒã¢ã³ã¯ xinetd ã«ããèµ·åãããããŒã¢ã³ã§ã�ç¡å¹ãªãã¡ã€ã«äœ¿çš�ã±ã«ããã¹�ã©ããªã³ã°�Linux ã°ã«ãŒã %s ã¯ååšããŠããŸãã�Linux ãŠãŒã¶ãŒ %s ã¯ååšããŠããŸãã�äžèŠ§è¡šç€º�ããªã·ãŒã¢ãžã¥ãŒã«ãããŒã�ããªã·ãŒã¢ãžã¥ãŒã«ãããŒã�ããã¯ããŠã³...�ãã°ã€ã³
å�ãã°ã€ã³ '%s' ãå¿
èŠã§ã�ãã°ã€ã³å�%s ã®ãã°ã€ã³ãããã³ã°ã¯ããªã·ãŒã«å®çŸ©ãããŠããŸããåé€ã§ããŸãã�%s ã®ãã°ã€ã³ãããã³ã°ã¯å®çŸ©ãããŠããŸãã�MCS ã¬ãã«�MCS ç¯å²�MLS�MLS/�MLS/
MCS ç¯å²�MLS/MCS
ã¬ãã«�MLS/MCS ç¯å²�ã¡ã¢ãªä¿è·�æå°éã®ã¿ãŒããã«ãŠãŒã¶ãŒããŒã«�æå°éã® X Windows ãŠãŒã¶ãŒããŒã«�%s ãå€æŽ�ãã¡ã€ã«ã³ã³ããã¹ãã®å€æŽ�SELinux ãŠãŒã¶ãŒãããã³ã°ã®å€æŽ�ãŠãŒã¶ãŒãå€æŽ�æ¢åã®ãã°ã€ã³ãŠãŒã¶ãŒèšé²ãä¿®æ£�ã¢ãžã¥ãŒã« %s.pp ã¯æ¢ã«çŸåšã®ããªã·ãŒå
ã«ããŒããããŠããŸãã
ç¶ç¶ããŸãã ?�ã¢ãžã¥ãŒã«å�ããŠã³ã�NFS�NIS�åå�ååãµãŒãã¹�ãããã¯ãŒã¯èšå®�ãããã¯ãŒã¯ããŒã�ãã¡ã€ã« %s ã«ã³ã³ããã¹ãããããŸãã
�ããŒãã¢ãã¬ã¹ãå¿
èŠã§ã�ããŒãããããã¹ã¯ãå¿
èŠã§ã�ãŸã ãå®è£
ãããŠããŸãã�ãªãã·ã§ã³ãšã©ãŒ %s �ã¡ã¢ãªã®ç©ºã容éããããŸããã
�ãã¹ã¯ãŒã:�蚱容�Polgen�ããªã·ãŒãã£ã¬ã¯ããªãŒ�ããªã·ãŒã¢ãžã¥ãŒã«�ããŒã�ããŒã %s/%s ã¯ãã§ã«å®çŸ©ãããŠããŸã�ããŒã %s/%s ã¯ããªã·ãŒã§å®çŸ©ãããŠããŸãã åé€ã§ããŸãã�ããŒã %s/%s ã¯å®çŸ©ãããŠããŸãã�ããŒãçªå·�ããŒããå¿
èŠã§ã�ããŒãçªå· "%s" ã¯æå¹ã§ã¯ãããŸããã0 < ããŒãçªå· < 65536 �ããŒã㯠1 ãã %d ãŸã§ã®æ°åããåã¯æ°åã®ç¯å²ã§ãªããã°ãªããŸãã �ãã¬ãã£ãã¯ã¹�å°å·�ããã»ã¹ãã¡ã€ã³�ããã�ãããã³ã«�ãããã³ã« udp ã tcp ãå¿
èŠã§ã�Red Hat 2007�次ã®åèµ·åã§ãªã©ãã«�ããŒãå¯èœãªããªã·ãŒã¢ãžã¥ãŒã«ãåãå€ã�å°ããšãã«ããŽãªãŒã 1 ã€å¿
èŠã§ã�ãã¬ãã£ãã¯ã¹ãããŒã«ãå¿
èŠã§ã�ãã¬ãã£ãã¯ã¹ããããŒã«ãã¬ãã«ãç¯å²ã®ãããããå¿
èŠã§ã�setype ãå¿
èŠã§ã�setype ã serange ãå¿
èŠã§ã�setypeãserangeããŸã㯠seuser ã®ãããããå¿
èŠã§ã�seuser ãŸã㯠serange ãå¿
èŠã§ã�ããŒãªã¢ã³èšå®ãã·ã¹ãã ããã©ã«ãã«æ»ã�ããŒã«�Root 管çãŠãŒã¶ãŒããŒã«�boolean ããã¯ããŠã³ã®ãŠã£ã¶ãŒããå®è¡�SASL èªèšŒãµãŒããŒ�SELinux
ãŠãŒã¶ãŒ�SELinux 管çè
�SELinux ã€ã³ã¿ãŒãã§ãŒã¹�SELinux ããªã·ãŒçæããŒã«�SELinux ããŒã
ã¿ã€ã�SELinux ããŒãã¿ã€ã�SELinux ããŒã«�SELinux ãµãŒãã¹ä¿è·�SELinux ã¿ã€ã�SELinux ã¿ã€ããå¿
èŠã§ã�SELinux ãŠãŒã¶ãŒ�SELinux boolean�SELinux fcontext�SELinux ããªã·ãŒã管çãããŠããªããã store ã«ã¢ã¯ã»ã¹ã§ããªããã®ããããã§ãã�SELinux ãŠãŒã¶ãŒ %s ã¯ããªã·ãŒã§å®çŸ©ãããŠããŸããåé€ã§ããŸãã�SELinux ãŠãŒã¶ãŒ %s ã¯å®çŸ©ãããŠããŸãã�SELinux ãŠãŒã¶ãŒ '%s' ãå¿
èŠã§ã�SSH�Samba�管çãªããžã§ã¯ããéžæ�ããŒããéžæããŠãã ãã�ãã®ãŠãŒã¶ãŒã root ãšããŠå®è¡ãããã·ã³ã®ç®¡çè
ãšããŠäœ¿çšãããŠãŒã¶ãŒãªãã° Root 管çãŠãŒã¶ãŒããŒã«ãéžæããŠãã ããããã®ãŠãŒã¶ãŒã¯ã·ã¹ãã ã« çŽæ¥ãã°ã€ã³ããããšã¯ã§ããŸããã�çæããããªã·ãŒãã¡ã€ã«ãå
¥ãããã£ã¬ã¯ããªãŒãéžæããŠãã ãã�å¶éããã¢ããªã±ãŒã·ã§ã³ãææããŠããããæžã蟌ãã ããããã£ã¬ã¯ããªãŒãéžæããŠãã ãã�å¶éããå®è¡ãã¡ã€ã«ãéžæããŠãã ããã�å¶éãããã¢ããªã±ãŒã·ã§ã³ãäœæããããæžã蟌ãã ããããã¡ã€ã«ãéžæããŠãã ãã�ãªã©ãã«ãããã®ãªãã°éžæããããããã°å
šãã¡ã€ã«ã·ã¹ãã ã次ã®åèµ·åæã«ãã·ã¹ãã ã®å€§ããã«äŸåããŸããããªã©ãã«ã¯éåžžã«é·ãæéãããããŸããããªã·ãŒã¿ã€ããå€æŽãããç¡å¹ãã匷å¶ãžå€ããå Žåããªã©ãã«ãå¿
èŠã«ãªããŸãã�å¶éããåæåã¹ã¯ãªãããéžæããŠãã ããã�ãã®ãŠãŒã¶ãŒã«ç®¡çãããããã¡ã€ã³ãéžæããŠãã ããã�ãã®ã¢ããªã±ãŒã·ã§ã³ãã¡ã€ã³ã«è»¢ç§»ãããŠãŒã¶ãŒããŒã«ãéžæ�Selinux
ãã¡ã€ã«ã¿ã€ã�Semanage ãã©ã³ã¶ã¯ã·ã§ã³ã¯æ¢ã«é²è¡ããŠããŸã�Semanage ãã©ã³ã¶ã¯ã·ã§ã³ã¯é²è¡ããŠããŸãã�ç£æ»ã¡ãã»ãŒãžãéä¿¡ããŸãã�é»åã¡ãŒã«ãéä¿¡ããŸã�èšå®ã¹ã¯ãªãã�æ®å¿µãªããã -l 㯠SELinux MLS ãµããŒãããªããšäœ¿çšã§ããŸããã
�æ®å¿µãªããã newrole 㯠SELinux ã«ãŒãã«äžã§ãã䜿çšã§ããŸããã
�æ®å¿µãªããã run_init 㯠SELinux ã«ãŒãã«äžã§ãã䜿çšã§ããŸããã
�ã¹ãã ä¿è·�Squid�æšæºåæåããŒã¢ã³�æšæº Init ããŒã¢ã³ã¯ init ã¹ã¯ãªããçµç±ã§ããŒãæã«èµ·åãããããŒã¢ã³ã§ããéåžž /etc/rc.d/init.d ã«ã¹ã¯ãªãããå¿
èŠã§ã�ç¶æ
�ã·ã¹ãã ããã©ã«ãã®åŒ·å¶ã¢ãŒã�ã·ã¹ãã ããã©ã«ãã®ããªã·ãŒã¿ã€ã: �ãã®ãŠãŒã¶ãŒã¯ X åã¯ã¿ãŒããã«ãä»ããŠãã·ã³ã«ãã°ã€ã³ã§ããŸããããã©ã«ã ã§ã¯ããã®ãŠãŒã¶ãŒã¯ setuid ã networking ã sudo ã su ãæã¡ãŸããã�ãã®ãŠãŒã¶ãŒã¯ã¿ãŒããã«ãåã¯ãªã¢ãŒããã°ã€ã³ãä»ããŠãã°ã€ã³ ããã§ããããããã©ã«ãã§ã¯ããã®ãŠãŒã¶ãŒã¯ setuid ã networking ã su ã sudo ãæã¡ãŸããã�ãã®ããªã·ãŒããã±ãŒãžãæå¹ã«ããã«ã¯ã以äžãå®è¡ããŠäžãã:�ã«ã¹ã¿ã åãšå
šããŒãªã¢ã³å€ãšã®éã§åãæ¿ã�ã«ã¹ã¿ã åãšå
šããŒãã®éã§åãæ¿ã�å
šãŠãšã«ã¹ã¿ã åãã¡ã€ã«ã³ã³ããã¹ãã®éã§åãæ¿ã�ã¹ã¿ãã SELinux ãŠãŒã¶ãŒãããŠã§ããã©ãŠã¶ãŒãã¡ã€ã³ãžã®è»¢äœ�sysadm SELinux ãŠãŒã¶ãŒãããŠã§ããã©ãŠã¶ãŒãã¡ã€ã³ãžã®è»¢äœ�ãŠãŒã¶ãŒ SELinux ãŠãŒã¶ãŒãããŠã§ããã©ãŠã¶ãŒãã¡ã€ã³ãžã®è»¢äœ�xguest SELinux ãŠãŒã¶ãŒãããŠã§ããã©ãŠã¶ãŒãã¡ã€ã³ãžã®è»¢äœ�ã¿ã€ã %s_t ã¯æ¢ã«çŸåšã®ããªã·ãŒã§å®çŸ©ãããŠããŸãã
ç¶ç¶ããŸãã ?�匷å¶ãã¡ã€ã«ãå
¥åããŠãã ãã�ã¿ã€ããå¿
èŠã§ã�䜿ãæ¹: run_init <script> <args ...>
ããã§ã <script> ã«å®è¡ãã init ã¹ã¯ãªããã®ååã
<args ...> ã«ãã®ã¹ã¯ãªããã«å¯ŸããåŒæ°ãæå®ããŸãã�USER ã¿ã€ãã¯èªåçã« tmp ã¿ã€ããåŸãŸã�new_context ã«ã¡ã¢ãªãå²ãåœãŠãããšãã§ããŸãã�ç°å¢ãæ¶å»ã§ããŸãã
�空ã®ã·ã°ãã«ã»ãããååŸã§ããŸãã
�ç°å¢ã埩å
ã§ããŸãããäžæ¢ããŸã
�tty ã©ãã«ã埩å
ã§ããŸãã...
�SIGHUP ãã³ãã©ãŒãèšå®ã§ããŸãã
�æ±çš SSL ãã³ãã«�äžæåã¯æ¬ åŠãããããã³ã«�äºçŽãããŠããªãããŒã (> 1024)�䜿ãæ¹ %s -L�䜿ãæ¹ %s -L -l ãŠãŒã¶ãŒ�䜿ãæ¹ %s -d ãã¡ã€ã« ...�䜿ãæ¹ %s -l -d ãŠãŒã¶ãŒ ...�䜿ãæ¹ %s -l CATEGORY ãŠãŒã¶ãŒ ...�䜿ãæ¹ %s -l [[+|-]CATEGORY],...]q ãŠãŒã¶ãŒ ...�䜿ãæ¹ %s CATEGORY ãã¡ã€ã« ...�䜿ãæ¹ %s [[+|-]CATEGORY],...]q ãã¡ã€ã« ...�ãªãã·ã§ã³ãªã¹ããçµäºããã«ã¯ -- ã䜿ããŸãã äŸãã°ã�ãŠãŒã¶ãŒã¢ããªã±ãŒã·ã§ã³�ãŠãŒã¶ãŒã¢ããªã±ãŒã·ã§ã³ã¯ãŠãŒã¶ãŒã«ãã£ãŠèµ·åããããå¶éãããããã¢ããªã±ãŒã·ã§ã³ã§ã�ãŠãŒã¶ãŒãããã³ã°�ãŠãŒã¶ãŒæš©é�ãŠãŒã¶ãŒããŒã«�å®å
šãªãããã¯ãŒãã³ã°ãæã¡ã転移ã®ãªã setuid ã¢ããªã±ãŒã·ã§ã³ã su ãæããªããŠãŒã¶ãŒã¯ sudo 㧠Root ã®ç®¡çããŒã«ã䜿çšã§ããŸãã�å®å
šãªãããã¯ãŒãã³ã°ãæã¡ã転移ã®ãªã setuid ã¢ããªã±ãŒã·ã§ã³ã sudo ã su ãæããªããŠãŒã¶ãŒã�Pam ãèªèšŒã«äœ¿çšããŸã�dbus ã䜿çšããŸã�nsswitch å㯠getpw* ã³ãŒã«ã䜿çšããŸã�ååã®èšŒæ�ããŒãžã§ã³�èŠå! tty æ
å ±ãåã蟌ããŸããã§ããã
�èŠå! %s ã®ã³ã³ããã¹ãã埩å
ã§ããŸããã§ãã
�ãŠã§ãã¢ããªã±ãŒã·ã§ã³/ã¹ã¯ãªãã (CGI)�ãŠã§ãã¢ããªã±ãŒã·ã§ã³�ãŠã§ããµãŒã㌠(apache) ã«ããèµ·åããããŠã§ãã¢ããªã±ãŒã·ã§ã³/ã¹ã¯ãªãã (CGI) CGI ã¹ã¯ãªãã�syslog ã¡ãã»ãŒãžãæžããŸã �XEN�X ãµãŒããŒ�å°ãªããšã %s ã®ããŒã«ã 1 ã€è¿œå ããå¿
èŠããããŸã�å®è¡ãã¡ã€ã«ãæå®ããå¿
èŠããããŸã�å¶éããããã»ã¹/ãŠãŒã¶ãŒã®ååãå
¥åããªããã°ãªããŸãã�å¶éããããã»ã¹ã®å®è¡ãã¡ã€ã«ã®ãã¹ãå
¥åããªããã°ãªããŸãã�ãŠãŒã¶ãŒãéžæããå¿
èŠããããŸã�次ã®å€ã®ããããã²ãšã€ãæå®ããŠãã ãã: %s�åé€ïŒ_DïŒ�ç¹æ§ïŒ_PïŒ�å
šãŠ�å
šãã¡ã€ã«
éåžžãã¡ã€ã«
ãã£ã¬ã¯ããªãŒ
æåè£
眮
ãããã¯è£
眮
ãœã±ãã
ã·ã³ããªãã¯ãªã³ã¯
ååä»ããã€ã
�èªèšŒã«å€±æããŸããã
�passwd ãã¡ã€ã«ã«æå¹ãªãšã³ããªãèŠã€ãããŸããã
�chcat -- -CompanyConfidential /docs/businessplan.odt�chcat -l +CompanyConfidential juser�PAM ãµãŒãã¹èšå®ã®èªã¿èŸŒã¿ã«å€±æããŸããã
�ã¬ãã« %s ã§æ°ããç¯å²ããã«ãããã®ã«å€±æããŸãã
�æ°ããã³ã³ããã¹ãã®æååãžã®å€æã«å€±æããŸãã
�ã·ã§ã«ã®å®è¡ã«å€±æããŸãã
�ã¢ã«ãŠã³ãæ
å ±ã®ååŸã«å€±æããŸãã
�æ°ããã³ã³ããã¹ãã®ååŸã«å€±æããŸããã
�old_context ã®ååŸã«å€±æããŸããã
�PAM ã®åæåã«å€±æããŸãã
�PAM_TTY ã®èšå®ã«å€±æããŸãã
�æ°ããç¯å² %s ã®èšå®ã«å€±æããŸãã
�æ°ããããŒã« %s ã®èšå®ã«å€±æããŸãã
�æ°ããã¿ã€ã %s ã®èšå®ã«å€±æããŸãã
�getpass ã /dev/tty ãéããŸãã
�ã°ããŒãã«�label37�label38�label39�label41�label42�label44�label50�label59�æ°ããŒã«: %s: %lu è¡ã«ãšã©ãŒã
�newrole: ãã©ãŒã¯ã®å€±æ: %s�newrole: %s ã®ãã¹ã¯ãŒããééã£ãŠããŸã
�æ°ããŒã«: ãµãŒãã¹åèšå®ããã·ã¥ããŒãã«ããµã
�ãªã�ãªã³�pppd�rsync�run_init: %s ã®ãã¹ã¯ãŒããééã£ãŠããŸã
�system-config-selinux�Takuro Nagamoto <tnagamot AT redhat DOT com>, 2006.
Noriko Mizumoto <noriko AT redhat DOT com>, 2006.
Hyu_gabaru Ryu_ichi <hyu_gabaru AT yahoo DOT co DOT jp>, 2007.�ã¿ã€ã�äžæ�䜿ãæ¹: %s [-qi]
�use_syslog ã¯ããŒã«å€ã§ãªããã°ãªããŸãã�
ß
yôÊáœ~or�À5ÖJ�={þÁEÇêe�Ÿuç£Qk���®á¯G{÷?ù»ã+]üôçÉÍ××ô?�wûM3X�^¶Úæ>{Ž7ÙŸìŽKã>èo²ÎnÝ\ÿªÊj¿y·�ðR�£õãg/î=ÞÿfúOçÖr�·o×NVÊv¿ú~ÿY+�ü¿NGêu÷ø·Ã®þë¹HWûyëwÆ[eQ¶ÊšŸSÚbÖ>öÍËÇ�þ³>ä}Gçmx[o[<�ÞÚ{ðýÏ®_ÅïqF�ÚÛvM����IEND®B`