Chris PeBenito 80526c
#
Chris PeBenito 80526c
# This file contains a listing of available modules.
Chris PeBenito 80526c
# To prevent a module from  being used in policy
Chris PeBenito 80526c
# creation, set the module name to "off".
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# For monolithic policies, modules set to "base" and "module"
Chris PeBenito 80526c
# will be built into the policy.
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# For modular policies, modules set to "base" will be
Chris PeBenito 80526c
# included in the base module.  "module" will be compiled
Chris PeBenito 80526c
# as individual loadable modules.
Chris PeBenito 80526c
#
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: filesystem
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for filesystems.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
filesystem = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: selinux
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for kernel security interface, in particular, selinuxfs.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
selinux = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: kernel
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for kernel threads, proc filesystem,and unlabeled processes and objects.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
kernel = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: corenetwork
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy controlling access to network objects
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
corenetwork = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: files
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Basic filesystem types and interfaces.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
files = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: domain
Chris PeBenito 80526c
# Required in base
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Core policy for domains.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
domain = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: consoletype
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Determine of the console connected to the controlling terminal.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
consoletype = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: netutils
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Network analysis utilities
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
netutils = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: usermanage
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for managing user accounts.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
usermanage = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: rpm
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for the RPM package manager.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
rpm = off
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: dmesg
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for dmesg.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
dmesg = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: admin
Chris PeBenito 80526c
# Module: logrotate
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Rotate and archive system logs
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
logrotate = off
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: apps
Chris PeBenito 80526c
# Module: gpg
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for GNU Privacy Guard and related programs.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
gpg = off
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: devices
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Device nodes and interfaces for many basic system devices.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
devices = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: bootloader
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for the kernel modules, kernel image, and bootloader.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
bootloader = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: storage
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy controlling access to storage devices
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
storage = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: kernel
Chris PeBenito 80526c
# Module: terminal
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for terminals.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
terminal = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: cron
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Periodic execution of scheduled commands.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
cron = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: ssh
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Secure shell client and server policy.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
ssh = off
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: remotelogin
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for rshd, rlogind, and telnetd.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
remotelogin = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: sendmail
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for sendmail.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
sendmail = off
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: mta
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy common to all email tranfer agents.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
mta = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: nis
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for NIS (YP) servers and clients
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
nis = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: inetd
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Internet services daemon.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
inetd = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: kerberos
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# MIT Kerberos admin and KDC
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
kerberos = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: services
Chris PeBenito 80526c
# Module: nscd
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Name service cache daemon
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
nscd = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: selinuxutil
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for SELinux policy and userland applications.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
selinuxutil = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: getty
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for getty.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
getty = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: mount
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for mount.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
mount = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: logging
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for the kernel message logger and system logging daemon.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
logging = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: locallogin
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for local logins.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
locallogin = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: sysnetwork
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for network configuration: ifconfig and dhcp client.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
sysnetwork = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: iptables
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for iptables.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
iptables = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: userdomain
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for user domains
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
userdomain = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: clock
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for reading and setting the hardware clock.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
clock = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: corecommands
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Core policy for shells, and generic programs
Chris PeBenito 80526c
# in /bin, /sbin, /usr/bin, and /usr/sbin.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
corecommands = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: hotplug
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for hotplug system, for supporting the
Chris PeBenito 80526c
# connection and disconnection of devices at runtime.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
hotplug = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: lvm
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for logical volume management programs.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
lvm = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: modutils
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for kernel module utilities
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
modutils = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: udev
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for udev.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
udev = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: init
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# System initialization programs (init and init scripts).
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
init = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: hostname
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for changing the system host name.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
hostname = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: authlogin
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Common policy for authentication and user login.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
authlogin = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: libraries
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Policy for system libraries.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
libraries = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: ipsec
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# TCP/IP encryption
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
ipsec = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: unconfined
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# The unconfined domain.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
unconfined = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: miscfiles
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Miscelaneous files.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
miscfiles = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: fstools
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# Tools for filesystem management, such as mkfs and fsck.
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
fstools = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: pcmcia
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# PCMCIA card management services
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
pcmcia = base
Chris PeBenito 80526c
Chris PeBenito 80526c
# Layer: system
Chris PeBenito 80526c
# Module: raid
Chris PeBenito 80526c
#
Chris PeBenito 80526c
# RAID array management tools
Chris PeBenito 80526c
# 
Chris PeBenito 80526c
raid = base
Chris PeBenito 80526c