Blame targeted/domains/program/ssh.te
|
Chris PeBenito |
ab58ad |
#DESC sshd
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# Authors: Daniel Walsh <dwalsh@redhat.com>
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
#################################
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# Rules for the sshd domain.
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# sshd_exec_t is the type of the /bin/sshd and other programs.
|
|
Chris PeBenito |
ab58ad |
# This domain is defined just for targeted policy.
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
type sshd_exec_t, file_type, sysadmfile, exec_type;
|
|
Chris PeBenito |
ab58ad |
type ssh_exec_t, file_type, sysadmfile, exec_type;
|
|
Chris PeBenito |
ab58ad |
type ssh_keygen_exec_t, file_type, sysadmfile, exec_type;
|
|
Chris PeBenito |
ab58ad |
type ssh_keysign_exec_t, file_type, sysadmfile, exec_type;
|
|
Chris PeBenito |
ab58ad |
type sshd_key_t, file_type, sysadmfile;
|
|
Chris PeBenito |
ab58ad |
type sshd_var_run_t, file_type, sysadmfile;
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(initrc_t, sshd_exec_t, sshd_t)
|
|
Chris PeBenito |
ab58ad |
ifdef(`use_mcs', `
|
|
Chris PeBenito |
ab58ad |
range_transition initrc_t sshd_exec_t s0 - s0:c0.c255;
|
|
Chris PeBenito |
ab58ad |
')
|