rpms / selinux-policy

Clone
Source Code
GIT

Blame strict/domains/program/radvd.te

c10s-sig-hyperscale c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-hyperscale
  1.   ec848d247f563b01bb7338b2ef8a00c00c67c0bc
  2.   strict
  3.   domains
  4.   program
  5.   radvd.te
Blob History Raw
Chris PeBenito 0fbfa5 
#DESC Radv - IPv6 route advisory daemon
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5 
# Author:  Russell Coker <russell@coker.com.au>
Chris PeBenito 0fbfa5 
# X-Debian-Packages: radvd
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
#################################
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5 
# Rules for the radvd_t domain.
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5 
daemon_domain(radvd)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
etc_domain(radvd)
Chris PeBenito 0fbfa5 
allow radvd_t etc_t:file { getattr read };
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow radvd_t self:{ rawip_socket unix_dgram_socket } rw_socket_perms;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow radvd_t self:capability net_raw;
Chris PeBenito 0fbfa5 
allow radvd_t self:{ unix_dgram_socket rawip_socket } create;
Chris PeBenito 0fbfa5 
allow radvd_t self:unix_stream_socket create_socket_perms;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
can_network_server(radvd_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow radvd_t proc_t:dir r_dir_perms;
Chris PeBenito 0fbfa5 
allow radvd_t proc_t:file { getattr read };
Chris PeBenito 0fbfa5 
allow radvd_t etc_t:lnk_file read;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow radvd_t sysctl_net_t:file r_file_perms;
Chris PeBenito 0fbfa5 
allow radvd_t sysctl_net_t:dir r_dir_perms;

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation