Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: bootloader
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for the kernel modules, kernel image, and bootloader.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
bootloader = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: corenetwork
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy controlling access to network objects
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
corenetwork = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: admin
Miroslav Grepl 003088
# Module: dmesg
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for dmesg.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
dmesg = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: admin
Miroslav Grepl 003088
# Module: netutils
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Network analysis utilities
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
netutils = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: admin
Miroslav Grepl 003088
# Module: sudo
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Execute a command with a substitute user
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
sudo = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: admin
Miroslav Grepl 003088
# Module: su
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Run shells with substitute user and group
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
su = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: admin
Miroslav Grepl 003088
# Module: usermanage
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for managing user accounts.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
usermanage = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: apps
Miroslav Grepl 003088
# Module: seunshare
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# seunshare executable
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
seunshare = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: corecommands
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Core policy for shells, and generic programs
Miroslav Grepl 003088
# in /bin, /sbin, /usr/bin, and /usr/sbin.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
corecommands = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: devices
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Device nodes and interfaces for many basic system devices.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
devices = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: domain
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Core policy for domains.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
domain = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: userdomain
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for user domains
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
userdomain = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: files
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Basic filesystem types and interfaces.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
files = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: miscfiles
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Miscelaneous files.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
miscfiles = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: filesystem
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for filesystems.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
filesystem = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: kernel
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for kernel threads, proc filesystem,and unlabeled processes and objects.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
kernel = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: mcs
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# MultiCategory security policy
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
mcs = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: mls
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Multilevel security policy
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
mls = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: selinux
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for kernel security interface, in particular, selinuxfs.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
selinux = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: storage
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy controlling access to storage devices
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
storage = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: terminal
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for terminals.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
terminal = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: ubac
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
ubac = base
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: kernel
Miroslav Grepl 003088
# Module: unlabelednet
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# The unlabelednet module.
Miroslav Grepl 003088
#
Miroslav Grepl 003088
unlabelednet = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: role
Miroslav Grepl 003088
# Module: auditadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# auditadm account on tty logins
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
auditadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: role
Miroslav Grepl 003088
# Module: logadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Minimally prived root role for managing logging system
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
logadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: role
Miroslav Grepl 003088
# Module: logadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# logadm account on tty logins
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
logadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer:role
Miroslav Grepl 003088
# Module: sysadm_secadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# System Administrator with Security Admin rules
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
sysadm_secadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: role
Miroslav Grepl 003088
# Module: secadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# secadm account on tty logins
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
secadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer:role
Miroslav Grepl 003088
# Module: staff
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# admin account 
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
staff = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer:role
Miroslav Grepl 003088
# Module: sysadm_secadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# System Administrator with Security Admin rules
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
sysadm_secadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer:role
Miroslav Grepl 003088
# Module: sysadm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# System Administrator
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
sysadm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: role
Miroslav Grepl 003088
# Module: unprivuser
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Minimally privs guest account on tty logins
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
unprivuser = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: services
Miroslav Grepl 003088
# Module: postgresql
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# PostgreSQL relational database
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
postgresql = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: services
Miroslav Grepl 003088
# Module: ssh
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Secure shell client and server policy.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
ssh = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: services
Miroslav Grepl 003088
# Module: xserver
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# X windows login display manager
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
xserver = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: application
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Defines attributs and interfaces for all user applications
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
application = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: authlogin
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Common policy for authentication and user login.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
authlogin = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: clock
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for reading and setting the hardware clock.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
clock = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: fstools
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Tools for filesystem management, such as mkfs and fsck.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
fstools = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: getty
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for getty.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
getty = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: hostname
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for changing the system host name.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
hostname = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: init
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# System initialization programs (init and init scripts).
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
init = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: ipsec
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# TCP/IP encryption
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
ipsec = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: iptables
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for iptables.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
iptables = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: libraries
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for system libraries.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
libraries = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: locallogin
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for local logins.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
locallogin = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: logging
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for the kernel message logger and system logging daemon.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
logging = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: lvm
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for logical volume management programs.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
lvm = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: miscfiles
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Miscelaneous files.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
miscfiles = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: modutils
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for kernel module utilities
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
modutils = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: services
Miroslav Grepl 003088
# Module: automount
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Filesystem automounter service.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
automount = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: mount
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for mount.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
mount = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: netlabel
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Basic netlabel types and interfaces.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
netlabel = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: selinuxutil
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for SELinux policy and userland applications.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
selinuxutil = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Module: setrans
Miroslav Grepl 003088
# Required in base
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for setrans
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
setrans = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: sysnetwork
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for network configuration: ifconfig and dhcp client.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
sysnetwork = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: systemd
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for systemd components
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
systemd = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: udev
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for udev.
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
udev = module
Miroslav Grepl 003088
Miroslav Grepl 003088
# Layer: system
Miroslav Grepl 003088
# Module: userdomain
Miroslav Grepl 003088
#
Miroslav Grepl 003088
# Policy for user domains
Miroslav Grepl 003088
# 
Miroslav Grepl 003088
userdomain = module
Miroslav Grepl 003088