robin.thoni
/
roehling-postsrsd
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 5 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
106 Commit
2 分支
目錄樹: 11d04014fa
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '11d04014fa'
${ noResults }
roehling-postsrsd/selinux/postsrsd.te

postsrsd.te 648B
文件歷史 原始文件

12345678910111213141516171819202122 
  1. policy_module(postsrsd, 1.0.0)

  2. 

  3. gen_require(`

  4.     type http_cache_port_t;

  5. ')

  6. 

  7. type postsrsd_t;

  8. type postsrsd_exec_t;

  9. init_daemon_domain(postsrsd_t, postsrsd_exec_t)

  10. 

  11. type postsrsd_secret_t;

  12. files_type(postsrsd_secret_t)

  13. 

  14. miscfiles_read_localization(postsrsd_t)

  15. auth_use_nsswitch(postsrsd_t)

  16. logging_send_syslog_msg(postsrsd_t)

  17. allow postsrsd_t self:capability { setuid sys_chroot };

  18. # 10001 and 10002 are labelled http_cache_port_t for whatever reason,

  19. # no point arguing with that...

  20. corenet_tcp_bind_http_cache_port(postsrsd_t)

  21. allow postsrsd_t self:tcp_socket server_stream_socket_perms;

  22. allow postsrsd_t postsrsd_secret_t:file read_file_perms;