2010-09-09 11:10:24 +00:00
|
|
|
## <summary>policy for ajaxterm</summary>
|
|
|
|
|
|
|
|
########################################
|
|
|
|
## <summary>
|
|
|
|
## Execute a domain transition to run ajaxterm.
|
|
|
|
## </summary>
|
|
|
|
## <param name="domain">
|
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
2010-09-17 06:54:12 +00:00
|
|
|
## <summary>
|
2010-09-09 11:10:24 +00:00
|
|
|
## Domain allowed access.
|
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
Whitespace, newline and tab fixes.
2010-09-17 06:54:12 +00:00
|
|
|
## </summary>
|
2010-09-09 11:10:24 +00:00
|
|
|
## </param>
|
|
|
|
#
|
|
|
|
interface(`ajaxterm_domtrans',`
|
|
|
|
gen_require(`
|
|
|
|
type ajaxterm_t, ajaxterm_exec_t;
|
|
|
|
')
|
|
|
|
|
|
|
|
domtrans_pattern($1, ajaxterm_exec_t, ajaxterm_t)
|
|
|
|
')
|
|
|
|
|
|
|
|
########################################
|
|
|
|
## <summary>
|
|
|
|
## Execute ajaxterm server in the ajaxterm domain.
|
|
|
|
## </summary>
|
|
|
|
## <param name="domain">
|
|
|
|
## <summary>
|
|
|
|
## The type of the process performing this action.
|
|
|
|
## </summary>
|
|
|
|
## </param>
|
|
|
|
#
|
|
|
|
interface(`ajaxterm_initrc_domtrans',`
|
|
|
|
gen_require(`
|
|
|
|
type ajaxterm_initrc_exec_t;
|
|
|
|
')
|
|
|
|
|
|
|
|
init_labeled_script_domtrans($1, ajaxterm_initrc_exec_t)
|
|
|
|
')
|
|
|
|
|
|
|
|
########################################
|
|
|
|
## <summary>
|
|
|
|
## All of the rules required to administrate
|
|
|
|
## an ajaxterm environment
|
|
|
|
## </summary>
|
|
|
|
## <param name="domain">
|
|
|
|
## <summary>
|
|
|
|
## Domain allowed access.
|
|
|
|
## </summary>
|
|
|
|
## </param>
|
|
|
|
## <param name="role">
|
|
|
|
## <summary>
|
|
|
|
## Role allowed access.
|
|
|
|
## </summary>
|
|
|
|
## </param>
|
|
|
|
## <rolecap/>
|
|
|
|
#
|
|
|
|
interface(`ajaxterm_admin',`
|
|
|
|
gen_require(`
|
|
|
|
type ajaxterm_t;
|
|
|
|
type ajaxterm_initrc_exec_t;
|
|
|
|
')
|
|
|
|
|
|
|
|
allow $1 ajaxterm_t:process { ptrace signal_perms };
|
|
|
|
ps_process_pattern($1, ajaxterm_t)
|
|
|
|
|
|
|
|
ajaxterm_initrc_domtrans($1)
|
|
|
|
domain_system_change_exemption($1)
|
|
|
|
role_transition $2 ajaxterm_initrc_exec_t system_r;
|
|
|
|
allow $2 system_r;
|
|
|
|
')
|