Jump to Navigation

SELinux telnetpatch README and INSTALL

The telnetd and telnetd-ssl packages in Debian do not work with the selinux policies in etch (because /usr/lib/telnetlogin is not executable for the telnet daemon). This package contains a module that will solve this problem.

The module in this package is called telnetpatch, and it depends on the telnet and rlogin modules.

See also Debian bug 442335.

The Makefile should work in a Debian environment. It is untested in other environments, but it should not be too hard to get it to work on relatively recent selinux distributions.

After running the Makefile, do a semodule -i telnetpatch.pp. You may need to insert the default telnet and rlogind modules first:

semodule -i /usr/share/selinux/refpolicy-targeted/telnet.pp
semodule -i /usr/share/selinux/refpolicy-targeted/rlogin.pp

or

semodule -i /usr/share/selinux/refpolicy-strict/telnet.pp
semodule -i /usr/share/selinux/refpolicy-strict/rlogin.pp

Paths may be different on your distribution.



General_article | by Dr. Radut