rpms/selinux-policy
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Improve the documentation of ubac_constrained().

Browse Source
This commit is contained in:
Chris PeBenito 2010-03-02 11:28:44 -05:00
parent 4e12649d4e
commit 888d9e4652
1 changed files with 14 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
policy/modules/kernel/ubac.if
View File

@ -5,13 +5,26 @@
######################################## ########################################
## <summary> ## <summary>
## Constrain by user-based access control. ## Constrain by user-based access control (UBAC).
## </summary> ## </summary>
## <desc>
## <p>
## Constrain the specified type by user-based
## access control (UBAC). Typically, these are
## user processes or user files that need to be
## differentiated by SELinux user. Normally this
## does not include administrative or privileged
## programs. For the UBAC rules to be enforced,
## both the subject (source) type and the object
## (target) types must be UBAC constrained.
## </p>
## </desc>
## <param name="type"> ## <param name="type">
## <summary> ## <summary>
## Type to be constrained by UBAC. ## Type to be constrained by UBAC.
## </summary> ## </summary>
## </param> ## </param>
## <infoflow type="none"/>
# #
interface(`ubac_constrained',` interface(`ubac_constrained',`
gen_require(` gen_require(`