From 59a00d8a5566a5c566570b482a1e3a1bae65a0cb Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Wed, 9 Nov 2005 20:29:30 +0000 Subject: [PATCH] add avahi --- refpolicy/policy/modules.conf | 493 +++++++++++++++++----------------- 1 file changed, 250 insertions(+), 243 deletions(-) diff --git a/refpolicy/policy/modules.conf b/refpolicy/policy/modules.conf index d97d100e..bdf1e691 100644 --- a/refpolicy/policy/modules.conf +++ b/refpolicy/policy/modules.conf @@ -11,14 +11,6 @@ # as individual loadable modules. # -# Layer: kernel -# Module: devices -# Required in base -# -# Device nodes and interfaces for many basic system devices. -# -devices = base - # Layer: kernel # Module: filesystem # Required in base @@ -59,6 +51,14 @@ terminal = base # kernel = base +# Layer: kernel +# Module: devices +# Required in base +# +# Device nodes and interfaces for many basic system devices. +# +devices = base + # Layer: kernel # Module: corenetwork # Required in base @@ -261,13 +261,6 @@ storage = base # portmap = base -# Layer: services -# Module: apm -# -# Advanced power management daemon -# -apm = base - # Layer: services # Module: remotelogin # @@ -275,6 +268,13 @@ apm = base # remotelogin = base +# Layer: services +# Module: ntp +# +# Network time protocol daemon +# +ntp = base + # Layer: services # Module: rlogin # @@ -283,25 +283,11 @@ remotelogin = base rlogin = base # Layer: services -# Module: postfix +# Module: inetd # -# Postfix email server +# Internet services daemon. # -postfix = base - -# Layer: services -# Module: cyrus -# -# Cyrus is an IMAP service intended to be run on sealed servers -# -cyrus = base - -# Layer: services -# Module: rsync -# -# Fast incremental file transfer for synchronization -# -rsync = base +inetd = base # Layer: services # Module: ktalk @@ -318,11 +304,11 @@ ktalk = base finger = base # Layer: services -# Module: cron +# Module: howl # -# Periodic execution of scheduled commands. +# Port of Apple Rendezvous multicast DNS # -cron = base +howl = base # Layer: services # Module: tftp @@ -332,11 +318,11 @@ cron = base tftp = base # Layer: services -# Module: canna +# Module: kerberos # -# Canna - kana-kanji conversion server +# MIT Kerberos admin and KDC # -canna = base +kerberos = base # Layer: services # Module: gpm @@ -346,11 +332,32 @@ canna = base gpm = off # Layer: services -# Module: nscd +# Module: uucp # -# Name service cache daemon +# Unix to Unix Copy # -nscd = base +uucp = base + +# Layer: services +# Module: apache +# +# Apache web server +# +apache = base + +# Layer: services +# Module: dhcp +# +# Dynamic host configuration protocol (DHCP) server +# +dhcp = base + +# Layer: services +# Module: inn +# +# Internet News NNTP server +# +inn = base # Layer: services # Module: sendmail @@ -359,13 +366,6 @@ nscd = base # sendmail = base -# Layer: services -# Module: stunnel -# -# SSL Tunneling Proxy -# -stunnel = base - # Layer: services # Module: dbus # @@ -374,25 +374,11 @@ stunnel = base dbus = base # Layer: services -# Module: ftp +# Module: rshd # -# File transfer protocol service +# Remote shell service. # -ftp = base - -# Layer: services -# Module: dbskk -# -# Dictionary server for the SKK Japanese input method system. -# -dbskk = base - -# Layer: services -# Module: tcpd -# -# Policy for TCP daemon. -# -tcpd = base +rshd = base # Layer: services # Module: radvd @@ -401,13 +387,6 @@ tcpd = base # radvd = base -# Layer: services -# Module: rshd -# -# Remote shell service. -# -rshd = base - # Layer: services # Module: sasl # @@ -423,153 +402,11 @@ sasl = base postgresql = base # Layer: services -# Module: ntp +# Module: hal # -# Network time protocol daemon +# Hardware abstraction layer # -ntp = base - -# Layer: services -# Module: ldap -# -# OpenLDAP directory server -# -ldap = base - -# Layer: services -# Module: inetd -# -# Internet services daemon. -# -inetd = base - -# Layer: services -# Module: apache -# -# Apache web server -# -apache = base - -# Layer: services -# Module: squid -# -# Squid caching http proxy server -# -squid = base - -# Layer: services -# Module: howl -# -# Port of Apple Rendezvous multicast DNS -# -howl = base - -# Layer: services -# Module: dictd -# -# Dictionary daemon -# -dictd = base - -# Layer: services -# Module: kerberos -# -# MIT Kerberos admin and KDC -# -kerberos = base - -# Layer: services -# Module: radius -# -# RADIUS authentication and accounting server. -# -radius = base - -# Layer: services -# Module: uucp -# -# Unix to Unix Copy -# -uucp = base - -# Layer: services -# Module: nis -# -# Policy for NIS (YP) servers and clients -# -nis = base - -# Layer: services -# Module: dhcp -# -# Dynamic host configuration protocol (DHCP) server -# -dhcp = base - -# Layer: services -# Module: samba -# -# SMB and CIFS client/server programs for UNIX and -# name Service Switch daemon for resolving names -# from Windows NT servers. -# -samba = base - -# Layer: services -# Module: telnet -# -# Telnet daemon -# -telnet = base - -# Layer: services -# Module: inn -# -# Internet News NNTP server -# -inn = base - -# Layer: services -# Module: ssh -# -# Secure shell client and server policy. -# -ssh = base - -# Layer: services -# Module: networkmanager -# -# Manager for dynamically switching between networks. -# -networkmanager = base - -# Layer: services -# Module: xdm -# -# X windows login display manager -# -xdm = base - -# Layer: services -# Module: arpwatch -# -# Ethernet activity monitor. -# -arpwatch = base - -# Layer: services -# Module: distcc -# -# Distributed compiler daemon -# -distcc = off - -# Layer: services -# Module: mta -# -# Policy common to all email tranfer agents. -# -mta = base +hal = base # Layer: services # Module: zebra @@ -579,18 +416,11 @@ mta = base zebra = base # Layer: services -# Module: hal +# Module: ldap # -# Hardware abstraction layer +# OpenLDAP directory server # -hal = base - -# Layer: services -# Module: cpucontrol -# -# Services for loading CPU microcode and CPU frequency scaling. -# -cpucontrol = base +ldap = base # Layer: services # Module: mysql @@ -599,13 +429,6 @@ cpucontrol = base # mysql = base -# Layer: services -# Module: cups -# -# Common UNIX printing system -# -cups = base - # Layer: services # Module: bind # @@ -621,11 +444,11 @@ bind = base snmp = base # Layer: services -# Module: spamassassin +# Module: squid # -# Filter used for removing unsolicited email. +# Squid caching http proxy server # -spamassassin = base +squid = base # Layer: services # Module: mailman @@ -635,11 +458,11 @@ spamassassin = base mailman = base # Layer: services -# Module: lpd +# Module: dictd # -# Line printer daemon +# Dictionary daemon # -lpd = base +dictd = base # Layer: services # Module: privoxy @@ -648,6 +471,20 @@ lpd = base # privoxy = base +# Layer: services +# Module: nis +# +# Policy for NIS (YP) servers and clients +# +nis = base + +# Layer: services +# Module: telnet +# +# Telnet daemon +# +telnet = base + # Layer: services # Module: comsat # @@ -655,6 +492,13 @@ privoxy = base # comsat = base +# Layer: services +# Module: ssh +# +# Secure shell client and server policy. +# +ssh = base + # Layer: services # Module: cvs # @@ -670,11 +514,11 @@ cvs = base ppp = base # Layer: services -# Module: dovecot +# Module: arpwatch # -# Dovecot POP and IMAP mail server +# Ethernet activity monitor. # -dovecot = base +arpwatch = base # Layer: services # Module: bluetooth @@ -683,6 +527,127 @@ dovecot = base # bluetooth = base +# Layer: services +# Module: apm +# +# Advanced power management daemon +# +apm = base + +# Layer: services +# Module: mta +# +# Policy common to all email tranfer agents. +# +mta = base + +# Layer: services +# Module: nscd +# +# Name service cache daemon +# +nscd = base + +# Layer: services +# Module: stunnel +# +# SSL Tunneling Proxy +# +stunnel = base + +# Layer: services +# Module: distcc +# +# Distributed compiler daemon +# +distcc = off + +# Layer: services +# Module: samba +# +# SMB and CIFS client/server programs for UNIX and +# name Service Switch daemon for resolving names +# from Windows NT servers. +# +samba = base + +# Layer: services +# Module: cyrus +# +# Cyrus is an IMAP service intended to be run on sealed servers +# +cyrus = base + +# Layer: services +# Module: ftp +# +# File transfer protocol service +# +ftp = base + +# Layer: services +# Module: cpucontrol +# +# Services for loading CPU microcode and CPU frequency scaling. +# +cpucontrol = base + +# Layer: services +# Module: dovecot +# +# Dovecot POP and IMAP mail server +# +dovecot = base + +# Layer: services +# Module: rsync +# +# Fast incremental file transfer for synchronization +# +rsync = base + +# Layer: services +# Module: canna +# +# Canna - kana-kanji conversion server +# +canna = base + +# Layer: services +# Module: cron +# +# Periodic execution of scheduled commands. +# +cron = base + +# Layer: services +# Module: tcpd +# +# Policy for TCP daemon. +# +tcpd = base + +# Layer: services +# Module: xdm +# +# X windows login display manager +# +xdm = base + +# Layer: services +# Module: networkmanager +# +# Manager for dynamically switching between networks. +# +networkmanager = base + +# Layer: services +# Module: dbskk +# +# Dictionary server for the SKK Japanese input method system. +# +dbskk = base + # Layer: services # Module: pegasus # @@ -690,6 +655,34 @@ bluetooth = base # pegasus = base +# Layer: services +# Module: radius +# +# RADIUS authentication and accounting server. +# +radius = base + +# Layer: services +# Module: spamassassin +# +# Filter used for removing unsolicited email. +# +spamassassin = base + +# Layer: services +# Module: postfix +# +# Postfix email server +# +postfix = base + +# Layer: services +# Module: cups +# +# Common UNIX printing system +# +cups = base + # Layer: services # Module: rpc # @@ -697,6 +690,20 @@ pegasus = base # rpc = base +# Layer: services +# Module: lpd +# +# Line printer daemon +# +lpd = base + +# Layer: services +# Module: avahi +# +# mDNS/DNS-SD daemon implementing Apple ZeroConf architecture +# +avahi = base + # Layer: system # Module: unconfined #