SELinux targeted policy module which extends kernel mandatory access control policies to the Citadel Groupware Server (both Citadel and the Webcit webserver). The module has been compiled and tested on Red Hat Enterprise Linux 5 and CentOS 5.
Provides an additional layer of protection around the standalone git-daemon process.
The following packages must be installed for policy compilation:
selinux-policy-targeted
selinux-policy-devel
To install the prerequisite packages, use RPM or YUM.
Example: sudo yum install selinux-policy-devel
Unpack the archive (likely already completed if you are reading this)
Change to the “citadel” directory in the archive contents.
Adjust the file paths in the citserver.fc file to match the unique requirements of your distribution or system.
Run “make”.
Install the resulting citserver.pp SELinux module.Example: sudo /usr/sbin/semodule -i citserver.pp
Change to the “webcit” directory in the archive contents.
Adjust the file paths in the webcit.fc file to match the unique requirements of your distribution or system.
Run “make”.
Install the resulting citserver.pp SELinux module. Example: sudo /usr/sbin/semodule -i webcit.pp
