diff --git a/policy/modules/services/courier.if b/policy/modules/services/courier.if index 529c6d8..6192cc3 100644 --- a/policy/modules/services/courier.if +++ b/policy/modules/services/courier.if @@ -179,6 +179,24 @@ interface(`courier_manage_spool_files',` ######################################## ## +## Read courier spool files. +## +## +## +## Domain allowed access. +## +## +# +interface(`courier_read_spool',` + gen_require(` + type courier_spool_t; + ') + + read_files_pattern($1, courier_spool_t, courier_spool_t) +') + +######################################## +## ## Read and write to courier spool pipes. ## ## diff --git a/policy/modules/services/courier.te b/policy/modules/services/courier.te index 9476baf..5c3d708 100644 --- a/policy/modules/services/courier.te +++ b/policy/modules/services/courier.te @@ -1,5 +1,5 @@ -policy_module(courier, 1.8.0) +policy_module(courier, 1.8.1) ######################################## #