Blame policy/modules/apps/authbind.te
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
policy_module(authbind,1.0.0)
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
########################################
|
|
Chris PeBenito |
b6b574 |
#
|
|
Chris PeBenito |
b6b574 |
# Declarations
|
|
Chris PeBenito |
b6b574 |
#
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
type authbind_t;
|
|
Chris PeBenito |
b6b574 |
type authbind_exec_t;
|
|
Chris PeBenito |
b6b574 |
domain_type(authbind_t)
|
|
Chris PeBenito |
b6b574 |
domain_entry_file(authbind_t,authbind_exec_t)
|
|
Chris PeBenito |
b6b574 |
role system_r types authbind_t;
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
type authbind_etc_t;
|
|
Chris PeBenito |
b6b574 |
files_config_file(authbind_etc_t)
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
########################################
|
|
Chris PeBenito |
b6b574 |
#
|
|
Chris PeBenito |
b6b574 |
# Local policy
|
|
Chris PeBenito |
b6b574 |
#
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
allow authbind_t self:capability net_bind_service;
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
can_exec(authbind_t, authbind_etc_t)
|
|
Chris PeBenito |
b6b574 |
allow authbind_t authbind_etc_t:file r_file_perms;
|
|
Chris PeBenito |
b6b574 |
allow authbind_t authbind_etc_t:dir r_dir_perms;
|
|
Chris PeBenito |
b6b574 |
allow authbind_t authbind_etc_t:lnk_file { getattr read };
|
|
Chris PeBenito |
b6b574 |
files_list_etc(authbind_t)
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
term_use_console(authbind_t)
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
logging_send_syslog_msg(authbind_t)
|
|
Chris PeBenito |
b6b574 |
|
|
Chris PeBenito |
b6b574 |
libs_use_ld_so(authbind_t)
|
|
Chris PeBenito |
b6b574 |
libs_use_shared_libs(authbind_t)
|