Chris PeBenito 31b7c0
#DESC MonopD - Monopoly Daemon
Chris PeBenito 31b7c0
#
Chris PeBenito 31b7c0
# Author: Torsten Knodt <tk-selinux@datas-world.de>
Chris PeBenito 31b7c0
# based on the dhcpd_t policy from:
Chris PeBenito 31b7c0
#          Russell Coker <russell@coker.com.au>
Chris PeBenito 31b7c0
#
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
#################################
Chris PeBenito 31b7c0
#
Chris PeBenito 31b7c0
# Rules for the monopd_t domain.
Chris PeBenito 31b7c0
#
Chris PeBenito 31b7c0
daemon_domain(monopd)
Chris PeBenito 31b7c0
etc_domain(monopd)
Chris PeBenito 31b7c0
typealias monopd_etc_t alias etc_monopd_t;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
type monopd_share_t, file_type, sysadmfile;
Chris PeBenito 31b7c0
typealias monopd_share_t alias share_monopd_t;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
# Use the network.
Chris PeBenito 31b7c0
can_network_server(monopd_t)
Chris PeBenito 31b7c0
can_ypbind(monopd_t)
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
allow monopd_t monopd_port_t:tcp_socket name_bind;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
r_dir_file(monopd_t,share_monopd_t)
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
allow monopd_t self:unix_dgram_socket create_socket_perms;
Chris PeBenito 31b7c0
allow monopd_t self:unix_stream_socket create_socket_perms;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0
r_dir_file(monopd_t, etc_t)