Blob Blame History Raw
<html>
<head>
<title>
 Security Enhanced Linux Reference Policy
 </title>
<style type="text/css" media="all">@import "style.css";</style>
</head>
<body>
<div id="Header">Security Enhanced Linux Reference Policy</div>
<div id='Menu'>
	
		<a href="admin.html">+&nbsp;
		admin</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="apps.html">+&nbsp;
		apps</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="kernel.html">+&nbsp;
		kernel</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="services.html">+&nbsp;
		services</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_apache.html'>
			apache</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_apm.html'>
			apm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_arpwatch.html'>
			arpwatch</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_avahi.html'>
			avahi</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_bind.html'>
			bind</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_bluetooth.html'>
			bluetooth</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_canna.html'>
			canna</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_comsat.html'>
			comsat</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cpucontrol.html'>
			cpucontrol</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cron.html'>
			cron</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cups.html'>
			cups</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cvs.html'>
			cvs</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cyrus.html'>
			cyrus</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dbskk.html'>
			dbskk</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dbus.html'>
			dbus</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dhcp.html'>
			dhcp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dictd.html'>
			dictd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_distcc.html'>
			distcc</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dovecot.html'>
			dovecot</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_finger.html'>
			finger</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ftp.html'>
			ftp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_gpm.html'>
			gpm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_hal.html'>
			hal</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_howl.html'>
			howl</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_i18n_input.html'>
			i18n_input</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_inetd.html'>
			inetd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_inn.html'>
			inn</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_irqbalance.html'>
			irqbalance</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_kerberos.html'>
			kerberos</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ktalk.html'>
			ktalk</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ldap.html'>
			ldap</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_lpd.html'>
			lpd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_mailman.html'>
			mailman</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_mta.html'>
			mta</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_mysql.html'>
			mysql</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_networkmanager.html'>
			networkmanager</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_nis.html'>
			nis</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_nscd.html'>
			nscd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ntp.html'>
			ntp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_pegasus.html'>
			pegasus</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_portmap.html'>
			portmap</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_postfix.html'>
			postfix</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_postgresql.html'>
			postgresql</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ppp.html'>
			ppp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_privoxy.html'>
			privoxy</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_procmail.html'>
			procmail</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_radius.html'>
			radius</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_radvd.html'>
			radvd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rdisc.html'>
			rdisc</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_remotelogin.html'>
			remotelogin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rlogin.html'>
			rlogin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rpc.html'>
			rpc</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rshd.html'>
			rshd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rsync.html'>
			rsync</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_samba.html'>
			samba</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_sasl.html'>
			sasl</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_sendmail.html'>
			sendmail</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_snmp.html'>
			snmp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_spamassassin.html'>
			spamassassin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_squid.html'>
			squid</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ssh.html'>
			ssh</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_stunnel.html'>
			stunnel</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_tcpd.html'>
			tcpd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_telnet.html'>
			telnet</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_tftp.html'>
			tftp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_timidity.html'>
			timidity</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_uucp.html'>
			uucp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_xdm.html'>
			xdm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_xfs.html'>
			xfs</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_zebra.html'>
			zebra</a><br/>
		
		</div>
	
		<a href="system.html">+&nbsp;
		system</a></br/>
		<div id='subitem'>
		
		</div>
	
	<br/><p/>
	<a href="global_booleans.html">*&nbsp;Global&nbsp;Booleans&nbsp;</a>
	<br/><p/>
	<a href="global_tunables.html">*&nbsp;Global&nbsp;Tunables&nbsp;</a>
	<p/><br/><p/>
	<a href="index.html">*&nbsp;Layer Index</a>
	<br/><p/>
	<a href="interfaces.html">*&nbsp;Interface&nbsp;Index</a>
	<br/><p/>
	<a href="templates.html">*&nbsp;Template&nbsp;Index</a>
</div>

<div id="Content">
<a name="top":></a>
<h1>Layer: services</h1><p/>
<h2>Module: postfix</h2><p/>

<a href=#interfaces>Interfaces</a>
<a href=#templates>Templates</a>

<h3>Description:</h3>

<p><p>Postfix email server</p></p>



<a name="interfaces"></a>
<h3>Interfaces: </h3>

<a name="link_postfix_create_config"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_create_config</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		private type
		
	
		
			,
		
		
		
			[
		
		object
		
			]
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Create files with the specified type in
the postfix configuration directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

<tr><td>
private type
</td><td>

The type of the object to be created.

</td><td>
No
</td></tr>

<tr><td>
object
</td><td>

The object class of the object being created.  If
no class is specified, file will be used.

</td><td>
yes
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_domtrans_map"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_domtrans_map</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute postfix_map in the postfix_map domain.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_domtrans_master"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_domtrans_master</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute the master postfix program in the
postfix_master domain.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_domtrans_user_mail_handler"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_domtrans_user_mail_handler</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute postfix user mail programs
in their respective domains.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_dontaudit_rw_local_tcp_socket"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_dontaudit_rw_local_tcp_socket</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Do not audit attempts to read and
write postfix local delivery
TCP sockets.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain to not audit.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_dontaudit_use_fd"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_dontaudit_use_fd</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Do not audit attempts to use
postfix master process file
file descriptors.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain to not audit.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_exec_master"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_exec_master</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute the master postfix program in the
caller domain.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_list_spool"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_list_spool</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
List postfix mail spool directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_read_config"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_read_config</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read postfix configuration files.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_run_map"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_run_map</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		role
		
	
		
			,
		
		
		
		terminal
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute postfix_map in the postfix_map domain, and
allow the specified role the postfix_map domain.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

<tr><td>
role
</td><td>

The role to be allowed the postfix_map domain.

</td><td>
No
</td></tr>

<tr><td>
terminal
</td><td>

The type of the terminal allow the postfix_map domain to use.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_search_spool"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_search_spool</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Search postfix mail spool directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

Domain allowed access.

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_stub"></a>
<div id="interface">


<div id="codeblock">

<b>postfix_stub</b>(
	
		
		
		
			[
		
		domain
		
			]
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Postfix stub interface.  No access allowed.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>

N/A

</td><td>
yes
</td></tr>

</table>
</div>
</div>


<a href=#top>Return</a>


<a name="templates"></a>
<h3>Templates: </h3>

<a name="link_postfix_domain_template"></a>
<div id="template">


<div id="codeblock">

<b>postfix_domain_template</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>

Parameter descriptions are missing!

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_per_userdomain_template"></a>
<div id="template">


<div id="codeblock">

<b>postfix_per_userdomain_template</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>

Parameter descriptions are missing!

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_public_domain_template"></a>
<div id="template">


<div id="codeblock">

<b>postfix_public_domain_template</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>

Parameter descriptions are missing!

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_server_domain_template"></a>
<div id="template">


<div id="codeblock">

<b>postfix_server_domain_template</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>

Parameter descriptions are missing!

</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_postfix_user_domain_template"></a>
<div id="template">


<div id="codeblock">

<b>postfix_user_domain_template</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>

Parameter descriptions are missing!

</td><td>
No
</td></tr>

</table>
</div>
</div>


<a href=#top>Return</a>



</div>
</body>
</html>