rpms / selinux-policy

Clone
Source Code
GIT

Blame strict/domains/program/unused/imazesrv.te

c10s-sig-hyperscale c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-hyperscale
  1.   2ab07ebbf3549c9689c7b544f6fc1087e37a9f30
  2.   strict
  3.   domains
  4.   program
  5.   unused
  6.   imazesrv.te
Blob History Raw
Chris PeBenito 0fbfa5 
#DESC Imazesrv - Imaze Server
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5 
# Author:  Torsten Knodt <tk-selinux@datas-world.de>
Chris PeBenito 0fbfa5 
# based on games.te by Russell Coker <russell@coker.com.au>
Chris PeBenito 0fbfa5 
#
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
# type for shared data from imazesrv
Chris PeBenito 0fbfa5 
type imazesrv_data_t, file_type, sysadmfile;
Chris PeBenito 0fbfa5 
type imazesrv_data_labs_t, file_type, sysadmfile;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
# domain imazesrv_t is for system operation of imazesrv
Chris PeBenito 0fbfa5 
# also defines imazesrv_exec_t
Chris PeBenito 0fbfa5 
daemon_domain(imazesrv)
Chris PeBenito 0fbfa5 
log_domain(imazesrv);
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
r_dir_file(imazesrv_t, imazesrv_data_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow imazesrv_t imaze_port_t:tcp_socket name_bind;
Chris PeBenito 0fbfa5 
allow imazesrv_t imaze_port_t:udp_socket name_bind;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
create_append_log_file(imazesrv_t,imazesrv_log_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
can_network_server(imazesrv_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
allow imazesrv_t self:capability net_bind_service;
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
r_dir_file(imazesrv_t, etc_t)
Chris PeBenito 0fbfa5
Chris PeBenito 0fbfa5 
general_domain_access(imazesrv_t)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation