robin.thoni
/
roehling-postsrsd
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 5 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
115 Commits
2 Branches
Tree: 51aea0d39a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '51aea0d39a'
${ noResults }
roehling-postsrsd/selinux/postsrsd.te

postsrsd.te 773B
History Raw

12345678910111213141516171819202122 
  1. policy_module(postsrsd, 1.1.0)

  2. 

  3. type postsrsd_t;

  4. type postsrsd_exec_t;

  5. type postsrsd_var_lib_t;

  6. type postsrsd_secret_t;

  7. 

  8. init_daemon_domain(postsrsd_t, postsrsd_exec_t)

  9. 

  10. files_type(postsrsd_secret_t)

  11. files_type(postsrsd_var_lib_t)

  12. 

  13. miscfiles_read_localization(postsrsd_t)

  14. auth_use_nsswitch(postsrsd_t)

  15. logging_send_syslog_msg(postsrsd_t)

  16. allow postsrsd_t self:capability { setuid sys_chroot dac_override dac_read_search };

  17. # 10001 and 10002 are labelled http_cache_port_t for whatever reason,

  18. # no point arguing with that...

  19. corenet_tcp_bind_http_cache_port(postsrsd_t)

  20. allow postsrsd_t self:tcp_socket server_stream_socket_perms;

  21. read_files_pattern(postsrsd_t, postsrsd_secret_t, postsrsd_secret_t)

  22. manage_files_pattern(postsrsd_t, postsrsd_var_lib_t, postsrsd_var_lib_t)