rpms / selinux-policy

Clone
Source Code
GIT

Blame refpolicy/policy/modules/system/files.fc

c10s-sig-hyperscale c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-hyperscale
  1.   5e0da6a03eced7543794ba0f6ece4b3272411fb0
  2.   refpolicy
  3.   policy
  4.   modules
  5.   system
  6.   files.fc
Blob History Raw
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/.*				context_template(system_u:object_r:default_t,s0)
Chris PeBenito bee546 
/			-d	context_template(system_u:object_r:root_t,s0)
Chris PeBenito f8ec0a 
/\.journal			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /boot
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
/boot/\.journal			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/boot/lost\+found(/.*)?		context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /etc
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/etc(/.*)?			context_template(system_u:object_r:etc_t,s0)
Chris PeBenito bee546 
/etc/\.fstab\.hal\..+	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/asound\.state	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/blkid\.tab.*	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/fstab\.REVOKE	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/HOSTNAME		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/ioctl\.save	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/issue		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/issue\.net		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/localtime		-l	context_template(system_u:object_r:etc_t,s0)
Chris PeBenito bee546 
/etc/mtab		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/motd		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/nohotplug		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/nologin.*		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/etc/init\.d/functions	--	context_template(system_u:object_r:etc_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/etc/network/ifstate	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito eeb255
Chris PeBenito bee546 
/etc/ptal/ptal-printd-like -- 	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/etc/rc\.d/init\.d/functions -- context_template(system_u:object_r:etc_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/etc/sysconfig/hwconf	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/sysconfig/iptables\.save -- context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/sysconfig/firstboot --	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
ifdef(`distro_gentoo', `
Chris PeBenito bee546 
/etc/profile\.env	--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/csh\.env		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito bee546 
/etc/env\.d/.*		--	context_template(system_u:object_r:etc_runtime_t,s0)
Chris PeBenito f8ec0a 
')
Chris PeBenito f8ec0a
Chris PeBenito 5d3156 
# HOME_ROOT expands to all valid home directory prefixes found in /etc/passwd
Chris PeBenito 5d3156 
HOME_ROOT		-d	context_template(system_u:object_r:home_root_t,s0)
Chris PeBenito 5d3156 
HOME_ROOT/\.journal		<<none>>
Chris PeBenito 5d3156 
HOME_ROOT/lost\+found(/.*)?	context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito 5d3156
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /initrd
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# initrd mount point, only used during boot
Chris PeBenito bee546 
/initrd			-d	context_template(system_u:object_r:root_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /lost+found
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/lost\+found(/.*)?		context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /media
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# Mount points; do not relabel subdirectories, since
Chris PeBenito f8ec0a 
# we don't want to change any removable media by default.
Chris PeBenito bee546 
/media(/[^/]*)?		-d	context_template(system_u:object_r:mnt_t,s0)
Chris PeBenito f8ec0a 
/media/[^/]*/.*			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /mnt
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/mnt(/[^/]*)?		-d	context_template(system_u:object_r:mnt_t,s0)
Chris PeBenito f8ec0a 
/mnt/[^/]*/.*			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /opt
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/opt(/.*)?			context_template(system_u:object_r:usr_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/opt/.*/var/lib(64)?(/.*)?	context_template(system_u:object_r:var_lib_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /proc
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
/proc(/.*)?                     <<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /selinux
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
/selinux(/.*)?                  <<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /sys
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
/sys(/.*)?                      <<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /tmp
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/tmp			-d	context_template(system_u:object_r:tmp_t,s0)
Chris PeBenito f8ec0a 
/tmp/.*				<<none>>
Chris PeBenito f8ec0a 
/tmp/\.journal			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/tmp/lost\+found(/.*)?		context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /usr
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/usr(/.*)?			context_template(system_u:object_r:usr_t,s0)
Chris PeBenito f8ec0a 
/usr/\.journal			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/usr/lost\+found(/.*)?		context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/usr/etc(/.*)?			context_template(system_u:object_r:etc_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/usr/inclu.e(/.*)?		context_template(system_u:object_r:usr_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
/usr/local/\.journal		<<none>>
Chris PeBenito dd3163
Chris PeBenito dd3163 
/usr/local/etc(/.*)?		context_template(system_u:object_r:etc_t,s0)
Chris PeBenito dd3163
Chris PeBenito bee546 
/usr/local/lost\+found(/.*)?	context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito dd3163 
/usr/local/src(/.*)?		context_template(system_u:object_r:src_t,s0)
Chris PeBenito dd3163
Chris PeBenito bee546 
/usr/share(/.*)?/lib(64)?(/.*)?	context_template(system_u:object_r:usr_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/usr/src(/.*)?			context_template(system_u:object_r:src_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/usr/tmp		-d	context_template(system_u:object_r:tmp_t,s0)
Chris PeBenito f8ec0a 
/usr/tmp/.*			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito f8ec0a 
#
Chris PeBenito f8ec0a 
# /var
Chris PeBenito f8ec0a 
#
Chris PeBenito bee546 
/var(/.*)?			context_template(system_u:object_r:var_t,s0)
Chris PeBenito f8ec0a 
/var/\.journal			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/db/.*\.db		--	context_template(system_u:object_r:etc_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/ftp/etc(/.*)?		context_template(system_u:object_r:etc_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito dd3163 
/var/lib(/.*)?			context_template(system_u:object_r:var_lib_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito dd3163 
/var/lib/nfs/rpc_pipefs(/.*)?	<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/lock(/.*)?			context_template(system_u:object_r:var_lock_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito dd3163 
/var/lost\+found(/.*)?		context_template(system_u:object_r:lost_found_t,s0)
Chris PeBenito dd3163
Chris PeBenito bee546 
/var/run(/.*)?			context_template(system_u:object_r:var_run_t,s0)
Chris PeBenito f8ec0a 
/var/run/.*\.*pid		<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/spool(/.*)?		context_template(system_u:object_r:var_spool_t,s0)
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/tmp		-d	context_template(system_u:object_r:tmp_t,s0)
Chris PeBenito f8ec0a 
/var/tmp/.*			<<none>>
Chris PeBenito f8ec0a
Chris PeBenito bee546 
/var/tmp/vi\.recover	-d	context_template(system_u:object_r:tmp_t,s0)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation