rpms / selinux-policy

Clone
Source Code
GIT

Blame mls/domains/program/unused/ucspi-tcp.te

c10s-sig-hyperscale c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-hyperscale
  1.   8cffa788409f794c526e01c4feebff1e3ce145bd
  2.   mls
  3.   domains
  4.   program
  5.   unused
  6.   ucspi-tcp.te
Blob History Raw
Chris PeBenito 31b7c0 
#DESC ucspi-tcp - TCP Server and Client Tools
Chris PeBenito 31b7c0 
#
Chris PeBenito 31b7c0 
# Author Petre Rodan <kaiowas@gentoo.org>
Chris PeBenito 31b7c0 
#			Andy Dustman (rblsmtp-related policy)
Chris PeBenito 31b7c0 
#
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
# http://cr.yp.to/ucspi-tcp.html
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
daemon_base_domain(utcpserver)
Chris PeBenito 31b7c0 
can_network(utcpserver_t)
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
allow utcpserver_t etc_t:file r_file_perms;
Chris PeBenito 31b7c0 
allow utcpserver_t { bin_t sbin_t var_t }:dir search;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
allow utcpserver_t self:capability { net_bind_service setgid setuid };
Chris PeBenito 31b7c0 
allow utcpserver_t self:fifo_file { read write };
Chris PeBenito 31b7c0 
allow utcpserver_t self:process { fork sigchld };
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
allow utcpserver_t port_t:udp_socket name_bind;
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
ifdef(`qmail.te', `
Chris PeBenito 31b7c0 
domain_auto_trans(utcpserver_t, qmail_smtpd_exec_t, qmail_smtpd_t)
Chris PeBenito 31b7c0 
allow utcpserver_t smtp_port_t:tcp_socket name_bind;
Chris PeBenito 31b7c0 
allow qmail_smtpd_t utcpserver_t:tcp_socket { read write getattr };
Chris PeBenito 31b7c0 
allow utcpserver_t qmail_etc_t:dir r_dir_perms;
Chris PeBenito 31b7c0 
allow utcpserver_t qmail_etc_t:file r_file_perms;
Chris PeBenito 31b7c0 
')
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
daemon_base_domain(rblsmtpd)
Chris PeBenito 31b7c0 
can_network(rblsmtpd_t)
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
allow rblsmtpd_t self:process { fork sigchld };
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
allow rblsmtpd_t etc_t:file r_file_perms;
Chris PeBenito 31b7c0 
allow rblsmtpd_t { bin_t var_t }:dir search;
Chris PeBenito 31b7c0 
allow rblsmtpd_t port_t:udp_socket name_bind;
Chris PeBenito 31b7c0 
allow rblsmtpd_t utcpserver_t:tcp_socket { read write getattr };
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
ifdef(`qmail.te', `
Chris PeBenito 31b7c0 
domain_auto_trans(rblsmtpd_t, qmail_smtpd_exec_t, qmail_smtpd_t)
Chris PeBenito 31b7c0 
allow qmail_queue_t rblsmtpd_t:fd use;
Chris PeBenito 31b7c0 
')
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
ifdef(`daemontools.te', `
Chris PeBenito 31b7c0 
svc_ipc_domain(rblsmtpd_t)
Chris PeBenito 31b7c0 
')
Chris PeBenito 31b7c0
Chris PeBenito 31b7c0 
domain_auto_trans(utcpserver_t, rblsmtpd_exec_t, rblsmtpd_t)
Chris PeBenito 31b7c0

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation