Blob Blame History Raw
<html>
<head>
<title>
 Security Enhanced Linux Reference Policy
 </title>
<style type="text/css" media="all">@import "style.css";</style>
</head>
<body>
<div id="Header">Security Enhanced Linux Reference Policy</div>
<div id='Menu'>
	
		<a href="admin.html">+&nbsp;
		admin</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_acct.html'>
			acct</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_consoletype.html'>
			consoletype</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_dmesg.html'>
			dmesg</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_firstboot.html'>
			firstboot</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_logrotate.html'>
			logrotate</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_netutils.html'>
			netutils</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_quota.html'>
			quota</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_rpm.html'>
			rpm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_su.html'>
			su</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_sudo.html'>
			sudo</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_tmpreaper.html'>
			tmpreaper</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_updfstab.html'>
			updfstab</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='admin_usermanage.html'>
			usermanage</a><br/>
		
		</div>
	
		<a href="apps.html">+&nbsp;
		apps</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='apps_gpg.html'>
			gpg</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='apps_loadkeys.html'>
			loadkeys</a><br/>
		
		</div>
	
		<a href="kernel.html">+&nbsp;
		kernel</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_bootloader.html'>
			bootloader</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_corenetwork.html'>
			corenetwork</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_devices.html'>
			devices</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_filesystem.html'>
			filesystem</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_kernel.html'>
			kernel</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_selinux.html'>
			selinux</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_storage.html'>
			storage</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_terminal.html'>
			terminal</a><br/>
		
		</div>
	
		<a href="services.html">+&nbsp;
		services</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_bind.html'>
			bind</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_comsat.html'>
			comsat</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_cron.html'>
			cron</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dbus.html'>
			dbus</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dhcp.html'>
			dhcp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_dictd.html'>
			dictd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_gpm.html'>
			gpm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_hal.html'>
			hal</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_howl.html'>
			howl</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_inetd.html'>
			inetd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_inn.html'>
			inn</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_kerberos.html'>
			kerberos</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ldap.html'>
			ldap</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_mta.html'>
			mta</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_mysql.html'>
			mysql</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_nis.html'>
			nis</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_nscd.html'>
			nscd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ntp.html'>
			ntp</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_privoxy.html'>
			privoxy</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_remotelogin.html'>
			remotelogin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rshd.html'>
			rshd</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_rsync.html'>
			rsync</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_sendmail.html'>
			sendmail</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_squid.html'>
			squid</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_ssh.html'>
			ssh</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='services_tcpd.html'>
			tcpd</a><br/>
		
		</div>
	
		<a href="system.html">+&nbsp;
		system</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_authlogin.html'>
			authlogin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_clock.html'>
			clock</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_corecommands.html'>
			corecommands</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_domain.html'>
			domain</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_files.html'>
			files</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_fstools.html'>
			fstools</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_getty.html'>
			getty</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_hostname.html'>
			hostname</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_hotplug.html'>
			hotplug</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_init.html'>
			init</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_ipsec.html'>
			ipsec</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_iptables.html'>
			iptables</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_libraries.html'>
			libraries</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_locallogin.html'>
			locallogin</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_logging.html'>
			logging</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_lvm.html'>
			lvm</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_miscfiles.html'>
			miscfiles</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_modutils.html'>
			modutils</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_mount.html'>
			mount</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_pcmcia.html'>
			pcmcia</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_raid.html'>
			raid</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_selinuxutil.html'>
			selinuxutil</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_sysnetwork.html'>
			sysnetwork</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_udev.html'>
			udev</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_unconfined.html'>
			unconfined</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='system_userdomain.html'>
			userdomain</a><br/>
		
		</div>
	
	<br/><p/>
	<a href="global_booleans.html">*&nbsp;Global&nbsp;Booleans&nbsp;</a>
	<br/><p/>
	<a href="global_tunables.html">*&nbsp;Global&nbsp;Tunables&nbsp;</a>
	<p/><br/><p/>
	<a href="index.html">*&nbsp;Layer Index</a>
	<br/><p/>
	<a href="interfaces.html">*&nbsp;Interface&nbsp;Index</a>
	<br/><p/>
	<a href="templates.html">*&nbsp;Template&nbsp;Index</a>
</div>

<div id="Content">
<h3>Master template index:</h3>


<div id="templatesmall">
Module: <a href='system_userdomain.html#link_admin_user_template'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>admin_user_template</b>(
	
		
		
		
		userdomain_prefix
		
	
	)<br>
</div>

<div id="description">
<p>
The template for creating an administrative user.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_authlogin.html#link_auth_domtrans_user_chk_passwd'>
authlogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>auth_domtrans_user_chk_passwd</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Run unix_chkpwd to check a password
for a user domain.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_authlogin.html#link_authlogin_per_userdomain_template'>
authlogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>authlogin_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the authlogin module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_base_user_template'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>base_user_template</b>(
	
		
		
		
		userdomain_prefix
		
	
	)<br>
</div>

<div id="description">
<p>
The template containing rules common to unprivileged
users and administrative users.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_cron.html#link_cron_admin_template'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>cron_admin_template</b>(
	
		
		
		
		userdomain_prefix
		
	
	)<br>
</div>

<div id="description">
<p>
The administrative functions template for the cron module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_cron.html#link_cron_per_userdomain_template'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>cron_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the cron module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_dbus.html#link_dbus_per_userdomain_template'>
dbus</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>dbus_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the dbus module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_dbus.html#link_dbus_system_bus_client_template'>
dbus</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>dbus_system_bus_client_template</b>(
	
		
		
		
		domain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Template for creating connections to
the system DBUS.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_domain.html#link_domain_auto_trans'>
domain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>domain_auto_trans</b>(
	
		
		
		
		?
		
	
	)<br>
</div>

<div id="description">
<p>
Summary is missing!
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_domain.html#link_domain_trans'>
domain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>domain_trans</b>(
	
		
		
		
		?
		
	
	)<br>
</div>

<div id="description">
<p>
Summary is missing!
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='apps_gpg.html#link_gpg_per_userdomain_template'>
gpg</a><p/>
Layer: <a href='apps.html'>
apps</a><p/>
<div id="codeblock">

<b>gpg_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the gpg module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_mta.html#link_mta_per_userdomain_template'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>mta_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the mta module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_ssh.html#link_ssh_per_userdomain_template'>
ssh</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>ssh_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the ssh module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='services_ssh.html#link_ssh_server_template'>
ssh</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">

<b>ssh_server_template</b>(
	
		
		
		
		userdomain_prefix
		
	
	)<br>
</div>

<div id="description">
<p>
The template to define a ssh server.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='admin_su.html#link_su_per_userdomain_template'>
su</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">

<b>su_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the su module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='admin_sudo.html#link_sudo_per_userdomain_template'>
sudo</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">

<b>sudo_per_userdomain_template</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		user_domain
		
	
		
			,
		
		
		
		user_role
		
	
	)<br>
</div>

<div id="description">
<p>
The per user domain template for the sudo module.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_unconfined.html#link_unconfined_domain_template'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>unconfined_domain_template</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
A template to make the specified domain unconfined.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_unpriv_user_template'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>unpriv_user_template</b>(
	
		
		
		
		userdomain_prefix
		
	
	)<br>
</div>

<div id="description">
<p>
The template for creating a unprivileged user.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_exec_user_home_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_exec_user_home_files</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Execute user home files.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_home_subdir_files</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete files
in a user home subdirectory.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_home_subdir_symlinks</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete symbolic links
in a user home subdirectory.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_tmp_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_tmp_dirs</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete user
temporary directories.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_tmp_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_tmp_files</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete user
temporary files.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_tmp_pipes'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_tmp_pipes</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete user
temporary named pipes.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_tmp_sockets'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_tmp_sockets</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete user
temporary named sockets.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_manage_user_tmp_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_manage_user_tmp_symlinks</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Create, read, write, and delete user
temporary symbolic links.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_read_user_home_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_read_user_home_files</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Read user home files.
</p>
</div>

</div>

<div id="templatesmall">
Module: <a href='system_userdomain.html#link_userdom_use_user_terminals'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">

<b>userdom_use_user_terminals</b>(
	
		
		
		
		userdomain_prefix
		
	
		
			,
		
		
		
		domain
		
	
	)<br>
</div>

<div id="description">
<p>
Read and write a user domain tty and pty.
</p>
</div>

</div>


</div>
</body>
</html>