amavis patch from Dan Walsh

2010-08-30 09:50:15 -04:00 · 2010-08-30 09:50:15 -04:00 · b8097d6ec4
commit b8097d6ec4
parent 5b082e4acf
2 changed files with 4 additions and 3 deletions
--- a/policy/modules/services/amavis.if
+++ b/policy/modules/services/amavis.if
@ -56,7 +56,7 @@ interface(`amavis_read_spool_files',`
 	')
 	files_search_spool($1)
-	allow $1 amavis_spool_t:file read_file_perms;
+	read_files_pattern($1, amavis_spool_t, amavis_spool_t)
 ')
 ########################################
--- a/policy/modules/services/amavis.te
+++ b/policy/modules/services/amavis.te
@ -92,9 +92,10 @@ manage_sock_files_pattern(amavis_t, amavis_var_log_t, amavis_var_log_t)
 logging_log_filetrans(amavis_t, amavis_var_log_t, { sock_file file dir })
 # pid file
 manage_dirs_pattern(amavis_t, amavis_var_run_t, amavis_var_run_t)
 manage_files_pattern(amavis_t, amavis_var_run_t, amavis_var_run_t)
 manage_sock_files_pattern(amavis_t, amavis_var_run_t, amavis_var_run_t)
-files_pid_filetrans(amavis_t, amavis_var_run_t, { file sock_file })
+files_pid_filetrans(amavis_t, amavis_var_run_t, { dir file sock_file })
 kernel_read_kernel_sysctls(amavis_t)
 # amavis tries to access /proc/self/stat, /etc/shadow and /root - perl...