30 lines
761 B
Plaintext
30 lines
761 B
Plaintext
|
#DESC Imazesrv - Imaze Server
|
||
|
#
|
||
|
# Author: Torsten Knodt <tk-selinux@datas-world.de>
|
||
|
# based on games.te by Russell Coker <russell@coker.com.au>
|
||
|
#
|
||
|
|
||
|
# type for shared data from imazesrv
|
||
|
type imazesrv_data_t, file_type, sysadmfile;
|
||
|
type imazesrv_data_labs_t, file_type, sysadmfile;
|
||
|
|
||
|
# domain imazesrv_t is for system operation of imazesrv
|
||
|
# also defines imazesrv_exec_t
|
||
|
daemon_domain(imazesrv)
|
||
|
log_domain(imazesrv);
|
||
|
|
||
|
r_dir_file(imazesrv_t, imazesrv_data_t)
|
||
|
|
||
|
allow imazesrv_t imaze_port_t:tcp_socket name_bind;
|
||
|
allow imazesrv_t imaze_port_t:udp_socket name_bind;
|
||
|
|
||
|
create_append_log_file(imazesrv_t,imazesrv_log_t)
|
||
|
|
||
|
can_network_server(imazesrv_t)
|
||
|
|
||
|
allow imazesrv_t self:capability net_bind_service;
|
||
|
|
||
|
r_dir_file(imazesrv_t, etc_t)
|
||
|
|
||
|
general_domain_access(imazesrv_t)
|