Chris PeBenito 0fbfa5
#DESC dbus-daemon-1 server for dbus desktop bus protocol
Chris PeBenito 0fbfa5
#
Chris PeBenito 0fbfa5
# Author:  Russell Coker <russell@coker.com.au>
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
dbusd_domain(system)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
allow system_dbusd_t system_dbusd_var_run_t:sock_file create_file_perms;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
ifdef(`pamconsole.te', `
Chris PeBenito 0fbfa5
r_dir_file(system_dbusd_t, pam_var_console_t)
Chris PeBenito 0fbfa5
')
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
# dac_override: /var/run/dbus is owned by messagebus on Debian
Chris PeBenito 0fbfa5
allow system_dbusd_t self:capability { dac_override setgid setuid };
Chris PeBenito 0fbfa5
can_ypbind(system_dbusd_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
# I expect we need more than this
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5
allow initrc_t system_dbusd_t:dbus { send_msg acquire_svc };
Chris PeBenito 0fbfa5