<h3>SASL module 20070329</h3>
Using the sasl project, SELinux protection can be enhanced in order to protect configuration (and probably security data) more efficiently.
The directory /etc/sasl2/ isn't represented in the SELinux policy. Thus, files have the etc_t attribute and external domains may be able to access sensitive informations (upon having high privilege in the Linux environnement).

Note that others errors are fixed by the patch associated to this bugs annoucement. Please, refer to the bugzilla associated entry.

* Impacted cyrus version:
dev-libs/cyrus-sasl 2.1.22-r2
selinux-cyrus-sasl-20070329


* Available solution : 
Apply the patch from the official gentoo bugzilla link

The patch apply the following modification to the SASL SELinux module

sasl.te: create new saslauthd_config_t type

type saslauthd_config_t;
read_files_pattern(saslauthd_t,saslauthd_config_t,saslauthd_config_t)

sasl.fc: define the associated files

/etc/sasl2/.* -- saslauthd_config_t

* Links : 
bug number 199404 http://bugs.gentoo.org/show_bug.cgi?id=199404