selinux-policy/refpolicy/policy/modules/system/corecommands.fc

105 lines
3.4 KiB
Plaintext
Raw Normal View History

2005-05-10 19:51:00 +00:00
#
# /bin
#
2005-05-18 21:02:15 +00:00
/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
/bin/d?ash -- context_template(system_u:object_r:shell_exec_t,s0)
/bin/bash -- context_template(system_u:object_r:shell_exec_t,s0)
/bin/bash2 -- context_template(system_u:object_r:shell_exec_t,s0)
/bin/ls -- context_template(system_u:object_r:ls_exec_t,s0)
/bin/sash -- context_template(system_u:object_r:shell_exec_t,s0)
/bin/tcsh -- context_template(system_u:object_r:shell_exec_t,s0)
/bin/zsh.* -- context_template(system_u:object_r:shell_exec_t,s0)
2005-05-10 19:51:00 +00:00
#
# /dev
#
2005-05-18 21:02:15 +00:00
/dev/MAKEDEV -- context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
#
# /etc
#
2005-05-18 21:02:15 +00:00
/etc/hotplug/.*agent -- context_template(system_u:object_r:sbin_t,s0)
/etc/hotplug/.*rc -- context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/etc/hotplug/hotplug\.functions -- context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/etc/hotplug\.d/default/default.* context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/etc/netplug\.d(/.*)? context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
2005-08-03 17:56:26 +00:00
ifdef(`distro_debian',`
/etc/mysql/debian-start -- context_template(system_u:object_r:bin_t,s0)
')
ifdef(`targeted_policy',`
2005-05-18 21:02:15 +00:00
/etc/X11/prefdm -- context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
')
#
# /sbin
#
2005-05-18 21:02:15 +00:00
/sbin(/.*)? context_template(system_u:object_r:sbin_t,s0)
/sbin/insmod_ksymoops_clean -- context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
#
# /opt
#
2005-05-18 21:02:15 +00:00
/opt/.*/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/opt/.*/libexec(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/opt/.*/sbin(/.*)? context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
#
# /usr
#
ifdef(`distro_gentoo', `
2005-05-18 21:02:15 +00:00
/usr/.*-.*-linux-gnu/gcc-bin/.*(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
')
2005-05-18 21:02:15 +00:00
/usr(/.*)?/Bin(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/usr(/.*)?/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/usr(/.*)?/sbin(/.*)? context_template(system_u:object_r:sbin_t,s0)
2005-05-10 19:51:00 +00:00
2005-07-06 15:59:54 +00:00
/usr/lib(64)?/sftp-server -- context_template(system_u:object_r:bin_t,s0)
2005-05-18 21:02:15 +00:00
/usr/lib(64)?/emacsen-common/.* context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-07-14 18:15:47 +00:00
/usr/lib(64)?/ipsec/.* -- context_template(system_u:object_r:sbin_t,s0)
2005-09-06 18:37:27 +00:00
/usr/lib(64)?/misc/sftp-server -- context_template(system_u:object_r:bin_t,s0)
/usr/lib(64)?/news/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-07-06 15:59:54 +00:00
ifdef(`distro_suse', `
2005-07-14 18:15:47 +00:00
/usr/lib(64)?/ssh/.* -- context_template(system_u:object_r:bin_t,s0)
2005-07-06 15:59:54 +00:00
')
2005-05-18 21:02:15 +00:00
/usr/lib(64)?/[^/]*thunderbird[^/]*/thunderbird -- context_template(system_u:object_r:bin_t,s0)
/usr/lib(64)?/[^/]*thunderbird[^/]*/thunderbird-bin -- context_template(system_u:object_r:bin_t,s0)
/usr/lib(64)?/[^/]*thunderbird[^/]*/run-mozilla\.sh -- context_template(system_u:object_r:bin_t,s0)
/usr/lib(64)?/[^/]*thunderbird[^/]*/mozilla-xremote-client -- context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/usr/libexec(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-07-06 15:59:54 +00:00
/usr/libexec/openssh/sftp-server -- context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-07-14 18:15:47 +00:00
/usr/local/lib(64)?/ipsec/.* -- context_template(system_u:object_r:sbin_t,s0)
2005-05-18 21:02:15 +00:00
/usr/sbin/sesh -- context_template(system_u:object_r:shell_exec_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/usr/share/gnucash/finance-quote-check -- context_template(system_u:object_r:bin_t,s0)
/usr/share/gnucash/finance-quote-helper -- context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/usr/share/mc/extfs/.* -- context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
#
# /var
#
2005-05-18 21:02:15 +00:00
/var/mailman/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
2005-05-10 19:51:00 +00:00
2005-05-18 21:02:15 +00:00
/var/ftp/bin(/.*)? context_template(system_u:object_r:bin_t,s0)
/var/ftp/bin/ls -- context_template(system_u:object_r:ls_exec_t,s0)