| Name: | fapolicyd |
|---|---|
| Version: | 1.3.3 |
| Release: | 100.0.1.el9 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 371799 |
| License: | GPLv3+ |
| RPM: | fapolicyd-1.3.3-100.0.1.el9.aarch64.rpm |
| Source RPM: | fapolicyd-1.3.3-100.0.1.el9.src.rpm |
| Build Date: | Mon Oct 28 2024 |
| Build Host: | build-ol9-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | http://people.redhat.com/sgrubb/fapolicyd |
| Summary: | Application Whitelisting Daemon |
| Description: | Fapolicyd (File Access Policy Daemon) implements application whitelisting to decide file access rights. Applications that are known via a reputation source are allowed access while unknown applications are not. The daemon makes use of the kernel's fanotify interface to determine file access rights. |
- Increase db_max_size to 100M
RHEL 9.5.0 ERRATUM - rebase to fapolicyd-1.3.3 and fapolicyd-selinux-0.7 Resolves: RHEL-36285
RHEL 9.3.0 ERRATUM - Rebase fapolicyd to the latest stable version Resolves: RHEL-430 - fapolicyd can leak FDs and never answer request, causing target process to hang forever Resolves: RHEL-621 - RFE: send rule number to fanotify so it gets audited Resolves: RHEL-624 - fapolicyd needs to make sure the FD limit is never reached Resolves: RHEL-623 - fapolicyd still allows execution of a program after "untrusting" it Resolves: RHEL-622 - Default q_size doesn't match manpage's one Resolves: RHEL-627 - fapolicyd-cli --update then mount/umount twice causes fapolicyd daemon to block (state 'D') Resolves: RHEL-817 - Fix broken backwards compatibility backend numbers Resolves: RHEL-730 - SELinux prevents the fapolicyd from reading symlink (cert_t) Resolves: RHEL-816
RHEL 9.2.0 ERRATUM - statically linked app can execute untrusted app Resolves: rhbz#2097077 - fapolicyd ineffective with systemd DynamicUser=yes Resolves: rhbz#2136802 - Starting manually fapolicyd while the service is already running breaks the system Resolves: rhbz#2160517 - Cannot execute /usr/libexec/grepconf.sh when falcon-sensor is enabled Resolves: rhbz#2160518 - fapolicyd: Introduce filtering of rpmdb Resolves: RHEL-192