Changeset 81 for selinux/build
- Timestamp:
- Jan 19, 2007, 7:44:57 AM (18 years ago)
- Location:
- selinux/build
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
selinux/build/afsd.if
r79 r81 33 33 allow $1 afsd_etc_t:file r_file_perms; 34 34 allow $1 afsd_etc_t:lnk_file r_file_perms; 35 allow $1 autofs_t:dir r_dir_perms; 36 allow $1 autofs_t:lnk_file r_file_perms; 37 allow $1 nfs_t:dir manage_dir_perms; 38 allow $1 nfs_t:file_class_set manage_file_perms; 35 allow $1 autofs_t:dir all_dir_perms; 36 allow $1 autofs_t:lnk_file all_lnk_file_perms; 37 allow $1 nfs_t:dir all_dir_perms; 38 allow $1 nfs_t:file all_file_perms; 39 allow $1 nfs_t:lnk_file all_lnk_file_perms; 40 allow $1 nfs_t:sock_file all_sock_file_perms; 41 allow $1 nfs_t:fifo_file all_fifo_file_perms; 42 allow $1 nfs_t:chr_file all_chr_file_perms; 43 allow $1 nfs_t:blk_file all_blk_file_perms; 39 44 ') -
selinux/build/misc.te
r79 r81 5 5 require { 6 6 type crond_t, kernel_t, sshd_t, user_t, httpd_t; 7 type postfix_local_t, procmail_t; 7 8 type proc_t; 8 9 } … … 11 12 afs_access(httpd_t); 12 13 afs_access(kernel_t); 14 afs_access(postfix_local_t); 15 afs_access(procmail_t); 13 16 afs_access(sshd_t); 14 17 afs_access(user_t); … … 43 46 44 47 require { 45 type s shd_t;48 type sendmail_t, sshd_t; 46 49 }; 47 50 … … 53 56 mta_sendmail_exec(user_t) 54 57 can_exec(user_t, sendmail_exec_t) 55 58 allow sendmail_t postfix_local_t:fd use; 59 allow sendmail_t postfix_local_t:fifo_file { getattr write }; 60 corecmd_exec_bin(procmail_t) 61 corecmd_exec_sbin(procmail_t) 56 62 57 63 ### HTTPD ###
Note: See TracChangeset
for help on using the changeset viewer.