fapolicyd-0.9.3

This release dramatically improves startup time. fapolicyd-cli has picked up --list and --ftype commands to help debug/write policy. File type identification has been improved. And trust database statistics have been added to the reports.

fapolicyd-0.9.2

This release adds an admin defined trust database (fapolicyd.trust), using librpm is now optional, and setting boost, queue, user, and group on the daemon command line are deprecated.

fapolicyd-0.9.1

This release allows watched mount points to be specified by file system types. ELF file detection was improved. The rules have been rewritten to express the policy based on subject object trust for better performance and reliability. Exceptions for dracut and ansible were added to the rules to avoid problems under normal system use.

fapolicyd-0.9

Improved subject cache management, performance improvements, drop need for fapolicyd.mounts file - daemon detects filesystems to monitor, stop collecting documentation in the trust database, and handle long paths.

fapolicyd-0.8.10

This release fixes a couple issue:

• When database problem is found on startup, rebuild database
• Fix segfault for rules whose subject is number oriented

fapolicyd-0.8.9

This release features: systemd usage updates, file permission adjustments based on selinux policy review, unterminated reads of auid & sessionid values was fixed, and the ld_preload pattern is deprecated for now.

fapolicyd-0.8.8

This release adds support for FAN_OPEN_EXEC_PERM Support and adds a DNF plugin that can update the trust database when rpms are installed.

fapolicy-0.8.7

This release fixes a top level symlinked dir to do a retry db lookup without /usr.

fapolicy-0.8.6

Performance improvements, new config file to tune performance and options, and updated rules.

fapolicy-0.8.5

This release only includes fixups needed to pass inspection for inclusion in a Linux Distribution.