trunk: Remove node definitions and change node usage to generic nodes.
This commit is contained in:
Chris PeBenito
parent
668b3093ff
commit
c1262146e0
|
|
@ -1,3 +1,4 @@
|
|||
- Remove node definitions and change node usage to generic nodes.
|
||||
- Add kernel_service access vectors, from Stephen Smalley.
|
||||
|
||||
* Wed Dec 10 2008 Chris PeBenito <selinux@tresys.com> - 2.20081210
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(amanda, 1.11.1)
|
||||
policy_module(amanda, 1.11.2)
|
||||
|
||||
#######################################
|
||||
#
|
||||
|
|
@ -121,13 +121,13 @@ corenet_all_recvfrom_netlabel(amanda_t)
|
|||
corenet_tcp_sendrecv_generic_if(amanda_t)
|
||||
corenet_udp_sendrecv_generic_if(amanda_t)
|
||||
corenet_raw_sendrecv_generic_if(amanda_t)
|
||||
corenet_tcp_sendrecv_all_nodes(amanda_t)
|
||||
corenet_udp_sendrecv_all_nodes(amanda_t)
|
||||
corenet_raw_sendrecv_all_nodes(amanda_t)
|
||||
corenet_tcp_sendrecv_generic_node(amanda_t)
|
||||
corenet_udp_sendrecv_generic_node(amanda_t)
|
||||
corenet_raw_sendrecv_generic_node(amanda_t)
|
||||
corenet_tcp_sendrecv_all_ports(amanda_t)
|
||||
corenet_udp_sendrecv_all_ports(amanda_t)
|
||||
corenet_tcp_bind_all_nodes(amanda_t)
|
||||
corenet_udp_bind_all_nodes(amanda_t)
|
||||
corenet_tcp_bind_generic_node(amanda_t)
|
||||
corenet_udp_bind_generic_node(amanda_t)
|
||||
corenet_tcp_bind_all_rpc_ports(amanda_t)
|
||||
corenet_tcp_bind_generic_port(amanda_t)
|
||||
corenet_dontaudit_tcp_bind_all_ports(amanda_t)
|
||||
|
|
@ -201,12 +201,12 @@ corenet_all_recvfrom_unlabeled(amanda_recover_t)
|
|||
corenet_all_recvfrom_netlabel(amanda_recover_t)
|
||||
corenet_tcp_sendrecv_generic_if(amanda_recover_t)
|
||||
corenet_udp_sendrecv_generic_if(amanda_recover_t)
|
||||
corenet_tcp_sendrecv_all_nodes(amanda_recover_t)
|
||||
corenet_udp_sendrecv_all_nodes(amanda_recover_t)
|
||||
corenet_tcp_sendrecv_generic_node(amanda_recover_t)
|
||||
corenet_udp_sendrecv_generic_node(amanda_recover_t)
|
||||
corenet_tcp_sendrecv_all_ports(amanda_recover_t)
|
||||
corenet_udp_sendrecv_all_ports(amanda_recover_t)
|
||||
corenet_tcp_bind_all_nodes(amanda_recover_t)
|
||||
corenet_udp_bind_all_nodes(amanda_recover_t)
|
||||
corenet_tcp_bind_generic_node(amanda_recover_t)
|
||||
corenet_udp_bind_generic_node(amanda_recover_t)
|
||||
corenet_tcp_bind_reserved_port(amanda_recover_t)
|
||||
corenet_tcp_connect_amanda_port(amanda_recover_t)
|
||||
corenet_sendrecv_amanda_client_packets(amanda_recover_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(apt, 1.5.1)
|
||||
policy_module(apt, 1.5.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -83,13 +83,13 @@ corenet_all_recvfrom_unlabeled(apt_t)
|
|||
corenet_all_recvfrom_netlabel(apt_t)
|
||||
corenet_tcp_sendrecv_generic_if(apt_t)
|
||||
corenet_udp_sendrecv_generic_if(apt_t)
|
||||
corenet_tcp_sendrecv_all_nodes(apt_t)
|
||||
corenet_udp_sendrecv_all_nodes(apt_t)
|
||||
corenet_tcp_sendrecv_generic_node(apt_t)
|
||||
corenet_udp_sendrecv_generic_node(apt_t)
|
||||
corenet_tcp_sendrecv_all_ports(apt_t)
|
||||
corenet_udp_sendrecv_all_ports(apt_t)
|
||||
# TODO: reall allow all these?
|
||||
corenet_tcp_bind_all_nodes(apt_t)
|
||||
corenet_udp_bind_all_nodes(apt_t)
|
||||
corenet_tcp_bind_generic_node(apt_t)
|
||||
corenet_udp_bind_generic_node(apt_t)
|
||||
corenet_tcp_connect_all_ports(apt_t)
|
||||
corenet_sendrecv_all_client_packets(apt_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(backup, 1.4.0)
|
||||
policy_module(backup, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -42,9 +42,9 @@ corenet_all_recvfrom_netlabel(backup_t)
|
|||
corenet_tcp_sendrecv_generic_if(backup_t)
|
||||
corenet_udp_sendrecv_generic_if(backup_t)
|
||||
corenet_raw_sendrecv_generic_if(backup_t)
|
||||
corenet_tcp_sendrecv_all_nodes(backup_t)
|
||||
corenet_udp_sendrecv_all_nodes(backup_t)
|
||||
corenet_raw_sendrecv_all_nodes(backup_t)
|
||||
corenet_tcp_sendrecv_generic_node(backup_t)
|
||||
corenet_udp_sendrecv_generic_node(backup_t)
|
||||
corenet_raw_sendrecv_generic_node(backup_t)
|
||||
corenet_tcp_sendrecv_all_ports(backup_t)
|
||||
corenet_udp_sendrecv_all_ports(backup_t)
|
||||
corenet_tcp_connect_all_ports(backup_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dpkg, 1.6.1)
|
||||
policy_module(dpkg, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -95,9 +95,9 @@ corenet_all_recvfrom_netlabel(dpkg_t)
|
|||
corenet_tcp_sendrecv_generic_if(dpkg_t)
|
||||
corenet_raw_sendrecv_generic_if(dpkg_t)
|
||||
corenet_udp_sendrecv_generic_if(dpkg_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dpkg_t)
|
||||
corenet_raw_sendrecv_all_nodes(dpkg_t)
|
||||
corenet_udp_sendrecv_all_nodes(dpkg_t)
|
||||
corenet_tcp_sendrecv_generic_node(dpkg_t)
|
||||
corenet_raw_sendrecv_generic_node(dpkg_t)
|
||||
corenet_udp_sendrecv_generic_node(dpkg_t)
|
||||
corenet_tcp_sendrecv_all_ports(dpkg_t)
|
||||
corenet_udp_sendrecv_all_ports(dpkg_t)
|
||||
corenet_tcp_connect_all_ports(dpkg_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(firstboot, 1.9.1)
|
||||
policy_module(firstboot, 1.9.2)
|
||||
|
||||
gen_require(`
|
||||
class passwd rootok;
|
||||
|
|
@ -40,7 +40,7 @@ kernel_read_kernel_sysctls(firstboot_t)
|
|||
corenet_all_recvfrom_unlabeled(firstboot_t)
|
||||
corenet_all_recvfrom_netlabel(firstboot_t)
|
||||
corenet_tcp_sendrecv_generic_if(firstboot_t)
|
||||
corenet_tcp_sendrecv_all_nodes(firstboot_t)
|
||||
corenet_tcp_sendrecv_generic_node(firstboot_t)
|
||||
corenet_tcp_sendrecv_all_ports(firstboot_t)
|
||||
|
||||
dev_read_urand(firstboot_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(mrtg, 1.6.0)
|
||||
policy_module(mrtg, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -67,8 +67,8 @@ corenet_all_recvfrom_unlabeled(mrtg_t)
|
|||
corenet_all_recvfrom_netlabel(mrtg_t)
|
||||
corenet_tcp_sendrecv_generic_if(mrtg_t)
|
||||
corenet_udp_sendrecv_generic_if(mrtg_t)
|
||||
corenet_tcp_sendrecv_all_nodes(mrtg_t)
|
||||
corenet_udp_sendrecv_all_nodes(mrtg_t)
|
||||
corenet_tcp_sendrecv_generic_node(mrtg_t)
|
||||
corenet_udp_sendrecv_generic_node(mrtg_t)
|
||||
corenet_tcp_sendrecv_all_ports(mrtg_t)
|
||||
corenet_udp_sendrecv_all_ports(mrtg_t)
|
||||
corenet_tcp_connect_all_ports(mrtg_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(netutils, 1.8.1)
|
||||
policy_module(netutils, 1.8.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -57,9 +57,9 @@ corenet_all_recvfrom_netlabel(netutils_t)
|
|||
corenet_tcp_sendrecv_generic_if(netutils_t)
|
||||
corenet_raw_sendrecv_generic_if(netutils_t)
|
||||
corenet_udp_sendrecv_generic_if(netutils_t)
|
||||
corenet_tcp_sendrecv_all_nodes(netutils_t)
|
||||
corenet_raw_sendrecv_all_nodes(netutils_t)
|
||||
corenet_udp_sendrecv_all_nodes(netutils_t)
|
||||
corenet_tcp_sendrecv_generic_node(netutils_t)
|
||||
corenet_raw_sendrecv_generic_node(netutils_t)
|
||||
corenet_udp_sendrecv_generic_node(netutils_t)
|
||||
corenet_tcp_sendrecv_all_ports(netutils_t)
|
||||
corenet_udp_sendrecv_all_ports(netutils_t)
|
||||
corenet_tcp_connect_all_ports(netutils_t)
|
||||
|
|
@ -116,9 +116,9 @@ corenet_all_recvfrom_unlabeled(ping_t)
|
|||
corenet_all_recvfrom_netlabel(ping_t)
|
||||
corenet_tcp_sendrecv_generic_if(ping_t)
|
||||
corenet_raw_sendrecv_generic_if(ping_t)
|
||||
corenet_raw_sendrecv_all_nodes(ping_t)
|
||||
corenet_raw_bind_all_nodes(ping_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ping_t)
|
||||
corenet_raw_sendrecv_generic_node(ping_t)
|
||||
corenet_tcp_sendrecv_generic_node(ping_t)
|
||||
corenet_raw_bind_generic_node(ping_t)
|
||||
corenet_tcp_sendrecv_all_ports(ping_t)
|
||||
|
||||
fs_dontaudit_getattr_xattr_fs(ping_t)
|
||||
|
|
@ -171,15 +171,15 @@ corenet_all_recvfrom_netlabel(traceroute_t)
|
|||
corenet_tcp_sendrecv_generic_if(traceroute_t)
|
||||
corenet_udp_sendrecv_generic_if(traceroute_t)
|
||||
corenet_raw_sendrecv_generic_if(traceroute_t)
|
||||
corenet_tcp_sendrecv_all_nodes(traceroute_t)
|
||||
corenet_udp_sendrecv_all_nodes(traceroute_t)
|
||||
corenet_raw_sendrecv_all_nodes(traceroute_t)
|
||||
corenet_tcp_sendrecv_generic_node(traceroute_t)
|
||||
corenet_udp_sendrecv_generic_node(traceroute_t)
|
||||
corenet_raw_sendrecv_generic_node(traceroute_t)
|
||||
corenet_tcp_sendrecv_all_ports(traceroute_t)
|
||||
corenet_udp_sendrecv_all_ports(traceroute_t)
|
||||
corenet_udp_bind_all_nodes(traceroute_t)
|
||||
corenet_tcp_bind_all_nodes(traceroute_t)
|
||||
corenet_udp_bind_generic_node(traceroute_t)
|
||||
corenet_tcp_bind_generic_node(traceroute_t)
|
||||
# traceroute needs this but not tracepath
|
||||
corenet_raw_bind_all_nodes(traceroute_t)
|
||||
corenet_raw_bind_generic_node(traceroute_t)
|
||||
corenet_udp_bind_traceroute_port(traceroute_t)
|
||||
corenet_tcp_connect_all_ports(traceroute_t)
|
||||
corenet_sendrecv_all_client_packets(traceroute_t)
|
||||
|
|
|
|||
|
|
@ -138,9 +138,9 @@ interface(`portage_compile_domain',`
|
|||
corenet_tcp_sendrecv_generic_if($1)
|
||||
corenet_udp_sendrecv_generic_if($1)
|
||||
corenet_raw_sendrecv_generic_if($1)
|
||||
corenet_tcp_sendrecv_all_nodes($1)
|
||||
corenet_udp_sendrecv_all_nodes($1)
|
||||
corenet_raw_sendrecv_all_nodes($1)
|
||||
corenet_tcp_sendrecv_generic_node($1)
|
||||
corenet_udp_sendrecv_generic_node($1)
|
||||
corenet_raw_sendrecv_generic_node($1)
|
||||
corenet_tcp_sendrecv_all_ports($1)
|
||||
corenet_udp_sendrecv_all_ports($1)
|
||||
corenet_tcp_connect_all_reserved_ports($1)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(portage, 1.7.0)
|
||||
policy_module(portage, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -222,7 +222,7 @@ corecmd_exec_bin(portage_fetch_t)
|
|||
corenet_all_recvfrom_unlabeled(portage_fetch_t)
|
||||
corenet_all_recvfrom_netlabel(portage_fetch_t)
|
||||
corenet_tcp_sendrecv_generic_if(portage_fetch_t)
|
||||
corenet_tcp_sendrecv_all_nodes(portage_fetch_t)
|
||||
corenet_tcp_sendrecv_generic_node(portage_fetch_t)
|
||||
corenet_tcp_sendrecv_all_ports(portage_fetch_t)
|
||||
# would rather not connect to unspecified ports, but
|
||||
# it occasionally comes up
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(rpm, 1.9.1)
|
||||
policy_module(rpm, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -97,9 +97,9 @@ corenet_all_recvfrom_netlabel(rpm_t)
|
|||
corenet_tcp_sendrecv_generic_if(rpm_t)
|
||||
corenet_raw_sendrecv_generic_if(rpm_t)
|
||||
corenet_udp_sendrecv_generic_if(rpm_t)
|
||||
corenet_tcp_sendrecv_all_nodes(rpm_t)
|
||||
corenet_raw_sendrecv_all_nodes(rpm_t)
|
||||
corenet_udp_sendrecv_all_nodes(rpm_t)
|
||||
corenet_tcp_sendrecv_generic_node(rpm_t)
|
||||
corenet_raw_sendrecv_generic_node(rpm_t)
|
||||
corenet_udp_sendrecv_generic_node(rpm_t)
|
||||
corenet_tcp_sendrecv_all_ports(rpm_t)
|
||||
corenet_udp_sendrecv_all_ports(rpm_t)
|
||||
corenet_tcp_connect_all_ports(rpm_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(sxid, 1.4.0)
|
||||
policy_module(sxid, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -45,8 +45,8 @@ corenet_all_recvfrom_unlabeled(sxid_t)
|
|||
corenet_all_recvfrom_netlabel(sxid_t)
|
||||
corenet_tcp_sendrecv_generic_if(sxid_t)
|
||||
corenet_udp_sendrecv_generic_if(sxid_t)
|
||||
corenet_tcp_sendrecv_all_nodes(sxid_t)
|
||||
corenet_udp_sendrecv_all_nodes(sxid_t)
|
||||
corenet_tcp_sendrecv_generic_node(sxid_t)
|
||||
corenet_udp_sendrecv_generic_node(sxid_t)
|
||||
corenet_tcp_sendrecv_all_ports(sxid_t)
|
||||
corenet_udp_sendrecv_all_ports(sxid_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(vpn, 1.10.1)
|
||||
policy_module(vpn, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -52,12 +52,12 @@ corenet_all_recvfrom_netlabel(vpnc_t)
|
|||
corenet_tcp_sendrecv_generic_if(vpnc_t)
|
||||
corenet_udp_sendrecv_generic_if(vpnc_t)
|
||||
corenet_raw_sendrecv_generic_if(vpnc_t)
|
||||
corenet_tcp_sendrecv_all_nodes(vpnc_t)
|
||||
corenet_udp_sendrecv_all_nodes(vpnc_t)
|
||||
corenet_raw_sendrecv_all_nodes(vpnc_t)
|
||||
corenet_tcp_sendrecv_generic_node(vpnc_t)
|
||||
corenet_udp_sendrecv_generic_node(vpnc_t)
|
||||
corenet_raw_sendrecv_generic_node(vpnc_t)
|
||||
corenet_tcp_sendrecv_all_ports(vpnc_t)
|
||||
corenet_udp_sendrecv_all_ports(vpnc_t)
|
||||
corenet_udp_bind_all_nodes(vpnc_t)
|
||||
corenet_udp_bind_generic_node(vpnc_t)
|
||||
corenet_udp_bind_generic_port(vpnc_t)
|
||||
corenet_udp_bind_isakmp_port(vpnc_t)
|
||||
corenet_udp_bind_ipsecnat_port(vpnc_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(calamaris, 1.4.0)
|
||||
policy_module(calamaris, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -44,8 +44,8 @@ corenet_all_recvfrom_unlabeled(calamaris_t)
|
|||
corenet_all_recvfrom_netlabel(calamaris_t)
|
||||
corenet_tcp_sendrecv_generic_if(calamaris_t)
|
||||
corenet_udp_sendrecv_generic_if(calamaris_t)
|
||||
corenet_tcp_sendrecv_all_nodes(calamaris_t)
|
||||
corenet_udp_sendrecv_all_nodes(calamaris_t)
|
||||
corenet_tcp_sendrecv_generic_node(calamaris_t)
|
||||
corenet_udp_sendrecv_generic_node(calamaris_t)
|
||||
corenet_tcp_sendrecv_all_ports(calamaris_t)
|
||||
corenet_udp_sendrecv_all_ports(calamaris_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(evolution, 2.0.0)
|
||||
policy_module(evolution, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -167,8 +167,8 @@ corenet_all_recvfrom_netlabel(evolution_t)
|
|||
corenet_tcp_sendrecv_generic_if(evolution_t)
|
||||
corenet_udp_sendrecv_generic_if(evolution_t)
|
||||
corenet_raw_sendrecv_generic_if(evolution_t)
|
||||
corenet_tcp_sendrecv_all_nodes(evolution_t)
|
||||
corenet_udp_sendrecv_all_nodes(evolution_t)
|
||||
corenet_tcp_sendrecv_generic_node(evolution_t)
|
||||
corenet_udp_sendrecv_generic_node(evolution_t)
|
||||
corenet_tcp_sendrecv_pop_port(evolution_t)
|
||||
corenet_udp_sendrecv_pop_port(evolution_t)
|
||||
corenet_tcp_sendrecv_smtp_port(evolution_t)
|
||||
|
|
@ -190,7 +190,7 @@ corenet_sendrecv_innd_client_packets(evolution_t)
|
|||
corenet_sendrecv_ldap_client_packets(evolution_t)
|
||||
corenet_sendrecv_ipp_client_packets(evolution_t)
|
||||
# not sure about this bind
|
||||
corenet_udp_bind_all_nodes(evolution_t)
|
||||
corenet_udp_bind_generic_node(evolution_t)
|
||||
corenet_udp_bind_generic_port(evolution_t)
|
||||
|
||||
dev_read_urand(evolution_t)
|
||||
|
|
@ -534,7 +534,7 @@ corecmd_exec_shell(evolution_server_t)
|
|||
corenet_all_recvfrom_unlabeled(evolution_server_t)
|
||||
corenet_all_recvfrom_netlabel(evolution_server_t)
|
||||
corenet_tcp_sendrecv_generic_if(evolution_server_t)
|
||||
corenet_tcp_sendrecv_all_nodes(evolution_server_t)
|
||||
corenet_tcp_sendrecv_generic_node(evolution_server_t)
|
||||
corenet_tcp_sendrecv_http_port(evolution_server_t)
|
||||
corenet_tcp_sendrecv_http_cache_port(evolution_server_t)
|
||||
corenet_tcp_connect_http_cache_port(evolution_server_t)
|
||||
|
|
@ -602,8 +602,8 @@ corenet_all_recvfrom_unlabeled(evolution_webcal_t)
|
|||
corenet_all_recvfrom_netlabel(evolution_webcal_t)
|
||||
corenet_tcp_sendrecv_generic_if(evolution_webcal_t)
|
||||
corenet_raw_sendrecv_generic_if(evolution_webcal_t)
|
||||
corenet_tcp_sendrecv_all_nodes(evolution_webcal_t)
|
||||
corenet_raw_sendrecv_all_nodes(evolution_webcal_t)
|
||||
corenet_tcp_sendrecv_generic_node(evolution_webcal_t)
|
||||
corenet_raw_sendrecv_generic_node(evolution_webcal_t)
|
||||
corenet_tcp_sendrecv_http_port(evolution_webcal_t)
|
||||
corenet_tcp_sendrecv_http_cache_port(evolution_webcal_t)
|
||||
corenet_tcp_connect_http_cache_port(evolution_webcal_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(games, 2.0.0)
|
||||
policy_module(games, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -128,11 +128,11 @@ corenet_all_recvfrom_unlabeled(games_t)
|
|||
corenet_all_recvfrom_netlabel(games_t)
|
||||
corenet_tcp_sendrecv_generic_if(games_t)
|
||||
corenet_udp_sendrecv_generic_if(games_t)
|
||||
corenet_tcp_sendrecv_all_nodes(games_t)
|
||||
corenet_udp_sendrecv_all_nodes(games_t)
|
||||
corenet_tcp_sendrecv_generic_node(games_t)
|
||||
corenet_udp_sendrecv_generic_node(games_t)
|
||||
corenet_tcp_sendrecv_all_ports(games_t)
|
||||
corenet_udp_sendrecv_all_ports(games_t)
|
||||
corenet_tcp_bind_all_nodes(games_t)
|
||||
corenet_tcp_bind_generic_node(games_t)
|
||||
corenet_tcp_bind_generic_port(games_t)
|
||||
corenet_tcp_connect_generic_port(games_t)
|
||||
corenet_sendrecv_generic_client_packets(games_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(gift, 2.0.0)
|
||||
policy_module(gift, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -60,7 +60,7 @@ kernel_read_system_state(giftd_t)
|
|||
corenet_all_recvfrom_unlabeled(gift_t)
|
||||
corenet_all_recvfrom_netlabel(gift_t)
|
||||
corenet_tcp_sendrecv_generic_if(gift_t)
|
||||
corenet_tcp_sendrecv_all_nodes(gift_t)
|
||||
corenet_tcp_sendrecv_generic_node(gift_t)
|
||||
corenet_tcp_sendrecv_giftd_port(gift_t)
|
||||
corenet_tcp_connect_giftd_port(gift_t)
|
||||
corenet_sendrecv_giftd_client_packets(gift_t)
|
||||
|
|
@ -115,12 +115,12 @@ corenet_all_recvfrom_unlabeled(giftd_t)
|
|||
corenet_all_recvfrom_netlabel(giftd_t)
|
||||
corenet_tcp_sendrecv_generic_if(giftd_t)
|
||||
corenet_udp_sendrecv_generic_if(giftd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(giftd_t)
|
||||
corenet_udp_sendrecv_all_nodes(giftd_t)
|
||||
corenet_tcp_sendrecv_generic_node(giftd_t)
|
||||
corenet_udp_sendrecv_generic_node(giftd_t)
|
||||
corenet_tcp_sendrecv_all_ports(giftd_t)
|
||||
corenet_udp_sendrecv_all_ports(giftd_t)
|
||||
corenet_tcp_bind_all_nodes(giftd_t)
|
||||
corenet_udp_bind_all_nodes(giftd_t)
|
||||
corenet_tcp_bind_generic_node(giftd_t)
|
||||
corenet_udp_bind_generic_node(giftd_t)
|
||||
corenet_tcp_bind_all_ports(giftd_t)
|
||||
corenet_udp_bind_all_ports(giftd_t)
|
||||
corenet_tcp_connect_all_ports(giftd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(gpg, 2.0.1)
|
||||
policy_module(gpg, 2.0.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -77,8 +77,8 @@ corenet_all_recvfrom_unlabeled(gpg_t)
|
|||
corenet_all_recvfrom_netlabel(gpg_t)
|
||||
corenet_tcp_sendrecv_generic_if(gpg_t)
|
||||
corenet_udp_sendrecv_generic_if(gpg_t)
|
||||
corenet_tcp_sendrecv_all_nodes(gpg_t)
|
||||
corenet_udp_sendrecv_all_nodes(gpg_t)
|
||||
corenet_tcp_sendrecv_generic_node(gpg_t)
|
||||
corenet_udp_sendrecv_generic_node(gpg_t)
|
||||
corenet_tcp_sendrecv_all_ports(gpg_t)
|
||||
corenet_udp_sendrecv_all_ports(gpg_t)
|
||||
corenet_tcp_connect_all_ports(gpg_t)
|
||||
|
|
@ -127,13 +127,13 @@ corenet_all_recvfrom_netlabel(gpg_helper_t)
|
|||
corenet_tcp_sendrecv_generic_if(gpg_helper_t)
|
||||
corenet_raw_sendrecv_generic_if(gpg_helper_t)
|
||||
corenet_udp_sendrecv_generic_if(gpg_helper_t)
|
||||
corenet_tcp_sendrecv_all_nodes(gpg_helper_t)
|
||||
corenet_udp_sendrecv_all_nodes(gpg_helper_t)
|
||||
corenet_raw_sendrecv_all_nodes(gpg_helper_t)
|
||||
corenet_tcp_sendrecv_generic_node(gpg_helper_t)
|
||||
corenet_udp_sendrecv_generic_node(gpg_helper_t)
|
||||
corenet_raw_sendrecv_generic_node(gpg_helper_t)
|
||||
corenet_tcp_sendrecv_all_ports(gpg_helper_t)
|
||||
corenet_udp_sendrecv_all_ports(gpg_helper_t)
|
||||
corenet_tcp_bind_all_nodes(gpg_helper_t)
|
||||
corenet_udp_bind_all_nodes(gpg_helper_t)
|
||||
corenet_tcp_bind_generic_node(gpg_helper_t)
|
||||
corenet_udp_bind_generic_node(gpg_helper_t)
|
||||
corenet_tcp_connect_all_ports(gpg_helper_t)
|
||||
|
||||
dev_read_urand(gpg_helper_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(irc, 2.0.0)
|
||||
policy_module(irc, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -51,8 +51,8 @@ corenet_all_recvfrom_unlabeled(irc_t)
|
|||
corenet_all_recvfrom_netlabel(irc_t)
|
||||
corenet_tcp_sendrecv_generic_if(irc_t)
|
||||
corenet_udp_sendrecv_generic_if(irc_t)
|
||||
corenet_tcp_sendrecv_all_nodes(irc_t)
|
||||
corenet_udp_sendrecv_all_nodes(irc_t)
|
||||
corenet_tcp_sendrecv_generic_node(irc_t)
|
||||
corenet_udp_sendrecv_generic_node(irc_t)
|
||||
corenet_tcp_sendrecv_all_ports(irc_t)
|
||||
corenet_udp_sendrecv_all_ports(irc_t)
|
||||
corenet_sendrecv_ircd_client_packets(irc_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(java, 2.0.0)
|
||||
policy_module(java, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -69,8 +69,8 @@ corenet_all_recvfrom_unlabeled(java_t)
|
|||
corenet_all_recvfrom_netlabel(java_t)
|
||||
corenet_tcp_sendrecv_generic_if(java_t)
|
||||
corenet_udp_sendrecv_generic_if(java_t)
|
||||
corenet_tcp_sendrecv_all_nodes(java_t)
|
||||
corenet_udp_sendrecv_all_nodes(java_t)
|
||||
corenet_tcp_sendrecv_generic_node(java_t)
|
||||
corenet_udp_sendrecv_generic_node(java_t)
|
||||
corenet_tcp_sendrecv_all_ports(java_t)
|
||||
corenet_udp_sendrecv_all_ports(java_t)
|
||||
corenet_tcp_connect_all_ports(java_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(mozilla, 2.0.0)
|
||||
policy_module(mozilla, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -86,8 +86,8 @@ corenet_all_recvfrom_unlabeled(mozilla_t)
|
|||
corenet_all_recvfrom_netlabel(mozilla_t)
|
||||
corenet_tcp_sendrecv_generic_if(mozilla_t)
|
||||
corenet_raw_sendrecv_generic_if(mozilla_t)
|
||||
corenet_tcp_sendrecv_all_nodes(mozilla_t)
|
||||
corenet_raw_sendrecv_all_nodes(mozilla_t)
|
||||
corenet_tcp_sendrecv_generic_node(mozilla_t)
|
||||
corenet_raw_sendrecv_generic_node(mozilla_t)
|
||||
corenet_tcp_sendrecv_http_port(mozilla_t)
|
||||
corenet_tcp_sendrecv_http_cache_port(mozilla_t)
|
||||
corenet_tcp_sendrecv_ftp_port(mozilla_t)
|
||||
|
|
|
|||
|
|
@ -159,9 +159,9 @@ template(`qemu_domain_template',`
|
|||
corenet_all_recvfrom_unlabeled($1_t)
|
||||
corenet_all_recvfrom_netlabel($1_t)
|
||||
corenet_tcp_sendrecv_generic_if($1_t)
|
||||
corenet_tcp_sendrecv_all_nodes($1_t)
|
||||
corenet_tcp_sendrecv_generic_node($1_t)
|
||||
corenet_tcp_sendrecv_all_ports($1_t)
|
||||
corenet_tcp_bind_all_nodes($1_t)
|
||||
corenet_tcp_bind_generic_node($1_t)
|
||||
corenet_tcp_bind_vnc_port($1_t)
|
||||
corenet_rw_tun_tap_dev($1_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(qemu, 1.1.1)
|
||||
policy_module(qemu, 1.1.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -96,8 +96,8 @@ template(`screen_role_template',`
|
|||
corenet_all_recvfrom_netlabel($1_screen_t)
|
||||
corenet_tcp_sendrecv_generic_if($1_screen_t)
|
||||
corenet_udp_sendrecv_generic_if($1_screen_t)
|
||||
corenet_tcp_sendrecv_all_nodes($1_screen_t)
|
||||
corenet_udp_sendrecv_all_nodes($1_screen_t)
|
||||
corenet_tcp_sendrecv_generic_node($1_screen_t)
|
||||
corenet_udp_sendrecv_generic_node($1_screen_t)
|
||||
corenet_tcp_sendrecv_all_ports($1_screen_t)
|
||||
corenet_udp_sendrecv_all_ports($1_screen_t)
|
||||
corenet_tcp_connect_all_ports($1_screen_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(screen, 2.0.0)
|
||||
policy_module(screen, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(thunderbird, 2.0.0)
|
||||
policy_module(thunderbird, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -61,7 +61,7 @@ corecmd_exec_shell(thunderbird_t)
|
|||
corenet_all_recvfrom_unlabeled(thunderbird_t)
|
||||
corenet_all_recvfrom_netlabel(thunderbird_t)
|
||||
corenet_tcp_sendrecv_generic_if(thunderbird_t)
|
||||
corenet_tcp_sendrecv_all_nodes(thunderbird_t)
|
||||
corenet_tcp_sendrecv_generic_node(thunderbird_t)
|
||||
corenet_tcp_sendrecv_ipp_port(thunderbird_t)
|
||||
corenet_tcp_sendrecv_ldap_port(thunderbird_t)
|
||||
corenet_tcp_sendrecv_innd_port(thunderbird_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(uml, 2.0.0)
|
||||
policy_module(uml, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -106,8 +106,8 @@ corenet_all_recvfrom_unlabeled(uml_t)
|
|||
corenet_all_recvfrom_netlabel(uml_t)
|
||||
corenet_tcp_sendrecv_generic_if(uml_t)
|
||||
corenet_udp_sendrecv_generic_if(uml_t)
|
||||
corenet_tcp_sendrecv_all_nodes(uml_t)
|
||||
corenet_udp_sendrecv_all_nodes(uml_t)
|
||||
corenet_tcp_sendrecv_generic_node(uml_t)
|
||||
corenet_udp_sendrecv_generic_node(uml_t)
|
||||
corenet_tcp_sendrecv_all_ports(uml_t)
|
||||
corenet_udp_sendrecv_all_ports(uml_t)
|
||||
corenet_tcp_connect_all_ports(uml_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(vmware, 2.0.0)
|
||||
policy_module(vmware, 2.0.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -92,14 +92,14 @@ corenet_all_recvfrom_netlabel(vmware_host_t)
|
|||
corenet_tcp_sendrecv_generic_if(vmware_host_t)
|
||||
corenet_udp_sendrecv_generic_if(vmware_host_t)
|
||||
corenet_raw_sendrecv_generic_if(vmware_host_t)
|
||||
corenet_tcp_sendrecv_all_nodes(vmware_host_t)
|
||||
corenet_udp_sendrecv_all_nodes(vmware_host_t)
|
||||
corenet_raw_sendrecv_all_nodes(vmware_host_t)
|
||||
corenet_tcp_sendrecv_generic_node(vmware_host_t)
|
||||
corenet_udp_sendrecv_generic_node(vmware_host_t)
|
||||
corenet_raw_sendrecv_generic_node(vmware_host_t)
|
||||
corenet_tcp_sendrecv_all_ports(vmware_host_t)
|
||||
corenet_udp_sendrecv_all_ports(vmware_host_t)
|
||||
corenet_raw_bind_all_nodes(vmware_host_t)
|
||||
corenet_tcp_bind_all_nodes(vmware_host_t)
|
||||
corenet_udp_bind_all_nodes(vmware_host_t)
|
||||
corenet_raw_bind_generic_node(vmware_host_t)
|
||||
corenet_tcp_bind_generic_node(vmware_host_t)
|
||||
corenet_udp_bind_generic_node(vmware_host_t)
|
||||
corenet_tcp_connect_all_ports(vmware_host_t)
|
||||
corenet_sendrecv_all_client_packets(vmware_host_t)
|
||||
corenet_sendrecv_all_server_packets(vmware_host_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(webalizer, 1.8.1)
|
||||
policy_module(webalizer, 1.8.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -63,7 +63,7 @@ kernel_read_system_state(webalizer_t)
|
|||
corenet_all_recvfrom_unlabeled(webalizer_t)
|
||||
corenet_all_recvfrom_netlabel(webalizer_t)
|
||||
corenet_tcp_sendrecv_generic_if(webalizer_t)
|
||||
corenet_tcp_sendrecv_all_nodes(webalizer_t)
|
||||
corenet_tcp_sendrecv_generic_node(webalizer_t)
|
||||
corenet_tcp_sendrecv_all_ports(webalizer_t)
|
||||
|
||||
fs_search_auto_mountpoints(webalizer_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(yam, 1.3.0)
|
||||
policy_module(yam, 1.3.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -62,7 +62,7 @@ corecmd_exec_bin(yam_t)
|
|||
corenet_all_recvfrom_unlabeled(yam_t)
|
||||
corenet_all_recvfrom_netlabel(yam_t)
|
||||
corenet_tcp_sendrecv_generic_if(yam_t)
|
||||
corenet_tcp_sendrecv_all_nodes(yam_t)
|
||||
corenet_tcp_sendrecv_generic_node(yam_t)
|
||||
corenet_tcp_sendrecv_all_ports(yam_t)
|
||||
corenet_tcp_connect_http_port(yam_t)
|
||||
corenet_tcp_connect_rsync_port(yam_t)
|
||||
|
|
|
|||
|
|
@ -589,6 +589,25 @@ interface(`corenet_udp_bind_generic_node',`
|
|||
allow $1 node_t:udp_socket node_bind;
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Bind raw sockets to genric nodes.
|
||||
## </summary>
|
||||
## <param name="domain">
|
||||
## <summary>
|
||||
## The type of the process performing this action.
|
||||
## </summary>
|
||||
## </param>
|
||||
# rawip_socket node_bind does not make much sense.
|
||||
# cjp: vmware hits this too
|
||||
interface(`corenet_raw_bind_generic_node',`
|
||||
gen_require(`
|
||||
type node_t;
|
||||
')
|
||||
|
||||
allow $1 node_t:rawip_socket node_bind;
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Send and receive TCP network traffic on all nodes.
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(corenetwork, 1.11.0)
|
||||
policy_module(corenetwork, 1.11.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -207,15 +207,9 @@ portcon udp 1-599 gen_context(system_u:object_r:reserved_port_t, s0)
|
|||
type node_t, node_type;
|
||||
sid node gen_context(system_u:object_r:node_t,s0 - mls_systemhigh)
|
||||
|
||||
network_node(compat_ipv4, s0, ::, ffff:ffff:ffff:ffff:ffff:ffff::)
|
||||
network_node(inaddr_any, s0, 0.0.0.0, 255.255.255.255)
|
||||
type node_internal_t, node_type; dnl network_node(internal, s0, , ) # no nodecon for this in current strict policy
|
||||
network_node(link_local, s0, fe80::, ffff:ffff:ffff:ffff::, )
|
||||
network_node(lo, s0 - mls_systemhigh, 127.0.0.1, 255.255.255.255)
|
||||
network_node(mapped_ipv4, s0, ::ffff:0000:0000, ffff:ffff:ffff:ffff:ffff:ffff::)
|
||||
network_node(multicast, s0 - mls_systemhigh, ff00::, ff00::)
|
||||
network_node(site_local, s0, fec0::, ffc0::)
|
||||
network_node(unspec, s0, ::, ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff)
|
||||
# network_node examples:
|
||||
#network_node(lo, s0 - mls_systemhigh, 127.0.0.1, 255.255.255.255)
|
||||
#network_node(multicast, s0 - mls_systemhigh, ff00::, ff00::)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(kernel, 1.10.1)
|
||||
policy_module(kernel, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -234,7 +234,6 @@ corenet_raw_send_generic_if(kernel_t)
|
|||
corenet_tcp_sendrecv_all_if(kernel_t)
|
||||
corenet_tcp_sendrecv_all_nodes(kernel_t)
|
||||
corenet_raw_send_generic_node(kernel_t)
|
||||
corenet_raw_send_multicast_node(kernel_t)
|
||||
corenet_send_all_packets(kernel_t)
|
||||
|
||||
dev_read_sysfs(kernel_t)
|
||||
|
|
@ -312,9 +311,9 @@ optional_policy(`
|
|||
# nfs kernel server needs kernel UDP access. It is less risky and painful
|
||||
# to just give it everything.
|
||||
corenet_udp_sendrecv_generic_if(kernel_t)
|
||||
corenet_udp_sendrecv_all_nodes(kernel_t)
|
||||
corenet_udp_sendrecv_generic_node(kernel_t)
|
||||
corenet_udp_sendrecv_all_ports(kernel_t)
|
||||
corenet_udp_bind_all_nodes(kernel_t)
|
||||
corenet_udp_bind_generic_node(kernel_t)
|
||||
corenet_sendrecv_portmap_client_packets(kernel_t)
|
||||
corenet_sendrecv_generic_server_packets(kernel_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(afs, 1.4.0)
|
||||
policy_module(afs, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -93,11 +93,11 @@ corenet_all_recvfrom_unlabeled(afs_bosserver_t)
|
|||
corenet_all_recvfrom_netlabel(afs_bosserver_t)
|
||||
corenet_tcp_sendrecv_generic_if(afs_bosserver_t)
|
||||
corenet_udp_sendrecv_generic_if(afs_bosserver_t)
|
||||
corenet_tcp_sendrecv_all_nodes(afs_bosserver_t)
|
||||
corenet_udp_sendrecv_all_nodes(afs_bosserver_t)
|
||||
corenet_tcp_sendrecv_generic_node(afs_bosserver_t)
|
||||
corenet_udp_sendrecv_generic_node(afs_bosserver_t)
|
||||
corenet_tcp_sendrecv_all_ports(afs_bosserver_t)
|
||||
corenet_udp_sendrecv_all_ports(afs_bosserver_t)
|
||||
corenet_udp_bind_all_nodes(afs_bosserver_t)
|
||||
corenet_udp_bind_generic_node(afs_bosserver_t)
|
||||
corenet_udp_bind_afs_bos_port(afs_bosserver_t)
|
||||
corenet_sendrecv_afs_bos_server_packets(afs_bosserver_t)
|
||||
|
||||
|
|
@ -147,14 +147,14 @@ kernel_read_kernel_sysctls(afs_fsserver_t)
|
|||
|
||||
corenet_tcp_sendrecv_generic_if(afs_fsserver_t)
|
||||
corenet_udp_sendrecv_generic_if(afs_fsserver_t)
|
||||
corenet_tcp_sendrecv_all_nodes(afs_fsserver_t)
|
||||
corenet_udp_sendrecv_all_nodes(afs_fsserver_t)
|
||||
corenet_tcp_sendrecv_generic_node(afs_fsserver_t)
|
||||
corenet_udp_sendrecv_generic_node(afs_fsserver_t)
|
||||
corenet_tcp_sendrecv_all_ports(afs_fsserver_t)
|
||||
corenet_udp_sendrecv_all_ports(afs_fsserver_t)
|
||||
corenet_all_recvfrom_unlabeled(afs_fsserver_t)
|
||||
corenet_all_recvfrom_netlabel(afs_fsserver_t)
|
||||
corenet_tcp_bind_all_nodes(afs_fsserver_t)
|
||||
corenet_udp_bind_all_nodes(afs_fsserver_t)
|
||||
corenet_tcp_bind_generic_node(afs_fsserver_t)
|
||||
corenet_udp_bind_generic_node(afs_fsserver_t)
|
||||
corenet_tcp_bind_afs_fs_port(afs_fsserver_t)
|
||||
corenet_udp_bind_afs_fs_port(afs_fsserver_t)
|
||||
corenet_sendrecv_afs_fs_server_packets(afs_fsserver_t)
|
||||
|
|
@ -205,11 +205,11 @@ corenet_all_recvfrom_unlabeled(afs_kaserver_t)
|
|||
corenet_all_recvfrom_netlabel(afs_kaserver_t)
|
||||
corenet_tcp_sendrecv_generic_if(afs_kaserver_t)
|
||||
corenet_udp_sendrecv_generic_if(afs_kaserver_t)
|
||||
corenet_tcp_sendrecv_all_nodes(afs_kaserver_t)
|
||||
corenet_udp_sendrecv_all_nodes(afs_kaserver_t)
|
||||
corenet_tcp_sendrecv_generic_node(afs_kaserver_t)
|
||||
corenet_udp_sendrecv_generic_node(afs_kaserver_t)
|
||||
corenet_tcp_sendrecv_all_ports(afs_kaserver_t)
|
||||
corenet_udp_sendrecv_all_ports(afs_kaserver_t)
|
||||
corenet_udp_bind_all_nodes(afs_kaserver_t)
|
||||
corenet_udp_bind_generic_node(afs_kaserver_t)
|
||||
corenet_udp_bind_afs_ka_port(afs_kaserver_t)
|
||||
corenet_udp_bind_kerberos_port(afs_kaserver_t)
|
||||
corenet_sendrecv_afs_ka_server_packets(afs_kaserver_t)
|
||||
|
|
@ -249,11 +249,11 @@ corenet_all_recvfrom_unlabeled(afs_ptserver_t)
|
|||
corenet_all_recvfrom_netlabel(afs_ptserver_t)
|
||||
corenet_tcp_sendrecv_generic_if(afs_ptserver_t)
|
||||
corenet_udp_sendrecv_generic_if(afs_ptserver_t)
|
||||
corenet_tcp_sendrecv_all_nodes(afs_ptserver_t)
|
||||
corenet_udp_sendrecv_all_nodes(afs_ptserver_t)
|
||||
corenet_tcp_sendrecv_generic_node(afs_ptserver_t)
|
||||
corenet_udp_sendrecv_generic_node(afs_ptserver_t)
|
||||
corenet_tcp_sendrecv_all_ports(afs_ptserver_t)
|
||||
corenet_udp_sendrecv_all_ports(afs_ptserver_t)
|
||||
corenet_udp_bind_all_nodes(afs_ptserver_t)
|
||||
corenet_udp_bind_generic_node(afs_ptserver_t)
|
||||
corenet_udp_bind_afs_pt_port(afs_ptserver_t)
|
||||
corenet_sendrecv_afs_pt_server_packets(afs_ptserver_t)
|
||||
|
||||
|
|
@ -287,11 +287,11 @@ corenet_all_recvfrom_unlabeled(afs_vlserver_t)
|
|||
corenet_all_recvfrom_netlabel(afs_vlserver_t)
|
||||
corenet_tcp_sendrecv_generic_if(afs_vlserver_t)
|
||||
corenet_udp_sendrecv_generic_if(afs_vlserver_t)
|
||||
corenet_tcp_sendrecv_all_nodes(afs_vlserver_t)
|
||||
corenet_udp_sendrecv_all_nodes(afs_vlserver_t)
|
||||
corenet_tcp_sendrecv_generic_node(afs_vlserver_t)
|
||||
corenet_udp_sendrecv_generic_node(afs_vlserver_t)
|
||||
corenet_tcp_sendrecv_all_ports(afs_vlserver_t)
|
||||
corenet_udp_sendrecv_all_ports(afs_vlserver_t)
|
||||
corenet_udp_bind_all_nodes(afs_vlserver_t)
|
||||
corenet_udp_bind_generic_node(afs_vlserver_t)
|
||||
corenet_udp_bind_afs_vl_port(afs_vlserver_t)
|
||||
corenet_sendrecv_afs_vl_server_packets(afs_vlserver_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(amavis, 1.9.1)
|
||||
policy_module(amavis, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -109,9 +109,9 @@ corecmd_exec_bin(amavis_t)
|
|||
corenet_all_recvfrom_unlabeled(amavis_t)
|
||||
corenet_all_recvfrom_netlabel(amavis_t)
|
||||
corenet_tcp_sendrecv_generic_if(amavis_t)
|
||||
corenet_tcp_sendrecv_all_nodes(amavis_t)
|
||||
corenet_tcp_bind_all_nodes(amavis_t)
|
||||
corenet_udp_bind_all_nodes(amavis_t)
|
||||
corenet_tcp_sendrecv_generic_node(amavis_t)
|
||||
corenet_tcp_bind_generic_node(amavis_t)
|
||||
corenet_udp_bind_generic_node(amavis_t)
|
||||
# amavis uses well-defined ports
|
||||
corenet_tcp_sendrecv_amavisd_recv_port(amavis_t)
|
||||
corenet_tcp_sendrecv_amavisd_send_port(amavis_t)
|
||||
|
|
|
|||
|
|
@ -183,8 +183,8 @@ template(`apache_content_template',`
|
|||
corenet_all_recvfrom_netlabel(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_generic_if(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_generic_if(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_all_nodes(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_all_nodes(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_generic_node(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_generic_node(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_all_ports(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_all_ports(httpd_$1_script_t)
|
||||
|
||||
|
|
@ -199,8 +199,8 @@ template(`apache_content_template',`
|
|||
corenet_all_recvfrom_netlabel(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_generic_if(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_generic_if(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_all_nodes(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_all_nodes(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_generic_node(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_generic_node(httpd_$1_script_t)
|
||||
corenet_tcp_sendrecv_all_ports(httpd_$1_script_t)
|
||||
corenet_udp_sendrecv_all_ports(httpd_$1_script_t)
|
||||
corenet_tcp_connect_all_ports(httpd_$1_script_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(apache, 2.0.1)
|
||||
policy_module(apache, 2.0.2)
|
||||
|
||||
#
|
||||
# NOTES:
|
||||
|
|
@ -317,11 +317,11 @@ corenet_all_recvfrom_unlabeled(httpd_t)
|
|||
corenet_all_recvfrom_netlabel(httpd_t)
|
||||
corenet_tcp_sendrecv_generic_if(httpd_t)
|
||||
corenet_udp_sendrecv_generic_if(httpd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(httpd_t)
|
||||
corenet_udp_sendrecv_all_nodes(httpd_t)
|
||||
corenet_tcp_sendrecv_generic_node(httpd_t)
|
||||
corenet_udp_sendrecv_generic_node(httpd_t)
|
||||
corenet_tcp_sendrecv_all_ports(httpd_t)
|
||||
corenet_udp_sendrecv_all_ports(httpd_t)
|
||||
corenet_tcp_bind_all_nodes(httpd_t)
|
||||
corenet_tcp_bind_generic_node(httpd_t)
|
||||
corenet_tcp_bind_http_port(httpd_t)
|
||||
corenet_tcp_bind_http_cache_port(httpd_t)
|
||||
corenet_sendrecv_http_server_packets(httpd_t)
|
||||
|
|
@ -633,8 +633,8 @@ tunable_policy(`httpd_can_network_connect',`
|
|||
corenet_all_recvfrom_netlabel(httpd_suexec_t)
|
||||
corenet_tcp_sendrecv_generic_if(httpd_suexec_t)
|
||||
corenet_udp_sendrecv_generic_if(httpd_suexec_t)
|
||||
corenet_tcp_sendrecv_all_nodes(httpd_suexec_t)
|
||||
corenet_udp_sendrecv_all_nodes(httpd_suexec_t)
|
||||
corenet_tcp_sendrecv_generic_node(httpd_suexec_t)
|
||||
corenet_udp_sendrecv_generic_node(httpd_suexec_t)
|
||||
corenet_tcp_sendrecv_all_ports(httpd_suexec_t)
|
||||
corenet_udp_sendrecv_all_ports(httpd_suexec_t)
|
||||
corenet_tcp_connect_all_ports(httpd_suexec_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(apcupsd, 1.5.1)
|
||||
policy_module(apcupsd, 1.5.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -57,9 +57,9 @@ corecmd_exec_shell(apcupsd_t)
|
|||
corenet_all_recvfrom_unlabeled(apcupsd_t)
|
||||
corenet_all_recvfrom_netlabel(apcupsd_t)
|
||||
corenet_tcp_sendrecv_generic_if(apcupsd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(apcupsd_t)
|
||||
corenet_tcp_sendrecv_generic_node(apcupsd_t)
|
||||
corenet_tcp_sendrecv_all_ports(apcupsd_t)
|
||||
corenet_tcp_bind_all_nodes(apcupsd_t)
|
||||
corenet_tcp_bind_generic_node(apcupsd_t)
|
||||
corenet_tcp_bind_apcupsd_port(apcupsd_t)
|
||||
corenet_sendrecv_apcupsd_server_packets(apcupsd_t)
|
||||
corenet_tcp_connect_apcupsd_port(apcupsd_t)
|
||||
|
|
@ -113,11 +113,11 @@ optional_policy(`
|
|||
corenet_all_recvfrom_unlabeled(httpd_apcupsd_cgi_script_t)
|
||||
corenet_all_recvfrom_netlabel(httpd_apcupsd_cgi_script_t)
|
||||
corenet_tcp_sendrecv_generic_if(httpd_apcupsd_cgi_script_t)
|
||||
corenet_tcp_sendrecv_all_nodes(httpd_apcupsd_cgi_script_t)
|
||||
corenet_tcp_sendrecv_generic_node(httpd_apcupsd_cgi_script_t)
|
||||
corenet_tcp_sendrecv_all_ports(httpd_apcupsd_cgi_script_t)
|
||||
corenet_tcp_connect_apcupsd_port(httpd_apcupsd_cgi_script_t)
|
||||
corenet_udp_sendrecv_generic_if(httpd_apcupsd_cgi_script_t)
|
||||
corenet_udp_sendrecv_all_nodes(httpd_apcupsd_cgi_script_t)
|
||||
corenet_udp_sendrecv_generic_node(httpd_apcupsd_cgi_script_t)
|
||||
corenet_udp_sendrecv_all_ports(httpd_apcupsd_cgi_script_t)
|
||||
|
||||
sysnet_dns_name_resolve(httpd_apcupsd_cgi_script_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(arpwatch, 1.7.1)
|
||||
policy_module(arpwatch, 1.7.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -55,9 +55,9 @@ corenet_all_recvfrom_netlabel(arpwatch_t)
|
|||
corenet_tcp_sendrecv_generic_if(arpwatch_t)
|
||||
corenet_udp_sendrecv_generic_if(arpwatch_t)
|
||||
corenet_raw_sendrecv_generic_if(arpwatch_t)
|
||||
corenet_tcp_sendrecv_all_nodes(arpwatch_t)
|
||||
corenet_udp_sendrecv_all_nodes(arpwatch_t)
|
||||
corenet_raw_sendrecv_all_nodes(arpwatch_t)
|
||||
corenet_tcp_sendrecv_generic_node(arpwatch_t)
|
||||
corenet_udp_sendrecv_generic_node(arpwatch_t)
|
||||
corenet_raw_sendrecv_generic_node(arpwatch_t)
|
||||
corenet_tcp_sendrecv_all_ports(arpwatch_t)
|
||||
corenet_udp_sendrecv_all_ports(arpwatch_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(asterisk, 1.6.0)
|
||||
policy_module(asterisk, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -89,12 +89,12 @@ corenet_all_recvfrom_unlabeled(asterisk_t)
|
|||
corenet_all_recvfrom_netlabel(asterisk_t)
|
||||
corenet_tcp_sendrecv_generic_if(asterisk_t)
|
||||
corenet_udp_sendrecv_generic_if(asterisk_t)
|
||||
corenet_tcp_sendrecv_all_nodes(asterisk_t)
|
||||
corenet_udp_sendrecv_all_nodes(asterisk_t)
|
||||
corenet_tcp_sendrecv_generic_node(asterisk_t)
|
||||
corenet_udp_sendrecv_generic_node(asterisk_t)
|
||||
corenet_tcp_sendrecv_all_ports(asterisk_t)
|
||||
corenet_udp_sendrecv_all_ports(asterisk_t)
|
||||
corenet_tcp_bind_all_nodes(asterisk_t)
|
||||
corenet_udp_bind_all_nodes(asterisk_t)
|
||||
corenet_tcp_bind_generic_node(asterisk_t)
|
||||
corenet_udp_bind_generic_node(asterisk_t)
|
||||
corenet_tcp_bind_asterisk_port(asterisk_t)
|
||||
corenet_udp_bind_asterisk_port(asterisk_t)
|
||||
corenet_sendrecv_asterisk_server_packets(asterisk_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(automount, 1.11.0)
|
||||
policy_module(automount, 1.11.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -82,12 +82,12 @@ corenet_all_recvfrom_unlabeled(automount_t)
|
|||
corenet_all_recvfrom_netlabel(automount_t)
|
||||
corenet_tcp_sendrecv_generic_if(automount_t)
|
||||
corenet_udp_sendrecv_generic_if(automount_t)
|
||||
corenet_tcp_sendrecv_all_nodes(automount_t)
|
||||
corenet_udp_sendrecv_all_nodes(automount_t)
|
||||
corenet_tcp_sendrecv_generic_node(automount_t)
|
||||
corenet_udp_sendrecv_generic_node(automount_t)
|
||||
corenet_tcp_sendrecv_all_ports(automount_t)
|
||||
corenet_udp_sendrecv_all_ports(automount_t)
|
||||
corenet_tcp_bind_all_nodes(automount_t)
|
||||
corenet_udp_bind_all_nodes(automount_t)
|
||||
corenet_tcp_bind_generic_node(automount_t)
|
||||
corenet_udp_bind_generic_node(automount_t)
|
||||
corenet_tcp_connect_portmap_port(automount_t)
|
||||
corenet_tcp_connect_all_ports(automount_t)
|
||||
corenet_dontaudit_tcp_connect_all_reserved_ports(automount_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(avahi, 1.10.1)
|
||||
policy_module(avahi, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -51,12 +51,12 @@ corenet_all_recvfrom_unlabeled(avahi_t)
|
|||
corenet_all_recvfrom_netlabel(avahi_t)
|
||||
corenet_tcp_sendrecv_generic_if(avahi_t)
|
||||
corenet_udp_sendrecv_generic_if(avahi_t)
|
||||
corenet_tcp_sendrecv_all_nodes(avahi_t)
|
||||
corenet_udp_sendrecv_all_nodes(avahi_t)
|
||||
corenet_tcp_sendrecv_generic_node(avahi_t)
|
||||
corenet_udp_sendrecv_generic_node(avahi_t)
|
||||
corenet_tcp_sendrecv_all_ports(avahi_t)
|
||||
corenet_udp_sendrecv_all_ports(avahi_t)
|
||||
corenet_tcp_bind_all_nodes(avahi_t)
|
||||
corenet_udp_bind_all_nodes(avahi_t)
|
||||
corenet_tcp_bind_generic_node(avahi_t)
|
||||
corenet_udp_bind_generic_node(avahi_t)
|
||||
corenet_tcp_bind_howl_port(avahi_t)
|
||||
corenet_udp_bind_howl_port(avahi_t)
|
||||
corenet_send_howl_client_packets(avahi_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(bind, 1.9.1)
|
||||
policy_module(bind, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -109,12 +109,12 @@ corenet_all_recvfrom_unlabeled(named_t)
|
|||
corenet_all_recvfrom_netlabel(named_t)
|
||||
corenet_tcp_sendrecv_generic_if(named_t)
|
||||
corenet_udp_sendrecv_generic_if(named_t)
|
||||
corenet_tcp_sendrecv_all_nodes(named_t)
|
||||
corenet_udp_sendrecv_all_nodes(named_t)
|
||||
corenet_tcp_sendrecv_generic_node(named_t)
|
||||
corenet_udp_sendrecv_generic_node(named_t)
|
||||
corenet_tcp_sendrecv_all_ports(named_t)
|
||||
corenet_udp_sendrecv_all_ports(named_t)
|
||||
corenet_tcp_bind_all_nodes(named_t)
|
||||
corenet_udp_bind_all_nodes(named_t)
|
||||
corenet_tcp_bind_generic_node(named_t)
|
||||
corenet_udp_bind_generic_node(named_t)
|
||||
corenet_tcp_bind_dns_port(named_t)
|
||||
corenet_udp_bind_dns_port(named_t)
|
||||
corenet_tcp_bind_rndc_port(named_t)
|
||||
|
|
@ -217,9 +217,9 @@ kernel_read_kernel_sysctls(ndc_t)
|
|||
corenet_all_recvfrom_unlabeled(ndc_t)
|
||||
corenet_all_recvfrom_netlabel(ndc_t)
|
||||
corenet_tcp_sendrecv_generic_if(ndc_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ndc_t)
|
||||
corenet_tcp_sendrecv_generic_node(ndc_t)
|
||||
corenet_tcp_sendrecv_all_ports(ndc_t)
|
||||
corenet_tcp_bind_all_nodes(ndc_t)
|
||||
corenet_tcp_bind_generic_node(ndc_t)
|
||||
corenet_tcp_connect_rndc_port(ndc_t)
|
||||
corenet_sendrecv_rndc_client_packets(ndc_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(bitlbee, 1.1.0)
|
||||
policy_module(bitlbee, 1.1.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -49,10 +49,8 @@ files_var_lib_filetrans(bitlbee_t, bitlbee_var_t, file)
|
|||
corenet_all_recvfrom_unlabeled(bitlbee_t)
|
||||
corenet_udp_sendrecv_generic_if(bitlbee_t)
|
||||
corenet_udp_sendrecv_generic_node(bitlbee_t)
|
||||
corenet_udp_sendrecv_lo_node(bitlbee_t)
|
||||
corenet_tcp_sendrecv_generic_if(bitlbee_t)
|
||||
corenet_tcp_sendrecv_generic_node(bitlbee_t)
|
||||
corenet_tcp_sendrecv_lo_node(bitlbee_t)
|
||||
# Allow bitlbee to connect to jabber servers
|
||||
corenet_tcp_connect_jabber_client_port(bitlbee_t)
|
||||
corenet_tcp_sendrecv_jabber_client_port(bitlbee_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(bluetooth, 3.1.1)
|
||||
policy_module(bluetooth, 3.1.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -99,9 +99,9 @@ corenet_all_recvfrom_netlabel(bluetooth_t)
|
|||
corenet_tcp_sendrecv_generic_if(bluetooth_t)
|
||||
corenet_udp_sendrecv_generic_if(bluetooth_t)
|
||||
corenet_raw_sendrecv_generic_if(bluetooth_t)
|
||||
corenet_tcp_sendrecv_all_nodes(bluetooth_t)
|
||||
corenet_udp_sendrecv_all_nodes(bluetooth_t)
|
||||
corenet_raw_sendrecv_all_nodes(bluetooth_t)
|
||||
corenet_tcp_sendrecv_generic_node(bluetooth_t)
|
||||
corenet_udp_sendrecv_generic_node(bluetooth_t)
|
||||
corenet_raw_sendrecv_generic_node(bluetooth_t)
|
||||
corenet_tcp_sendrecv_all_ports(bluetooth_t)
|
||||
corenet_udp_sendrecv_all_ports(bluetooth_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(canna, 1.9.1)
|
||||
policy_module(canna, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -53,7 +53,7 @@ kernel_read_system_state(canna_t)
|
|||
corenet_all_recvfrom_unlabeled(canna_t)
|
||||
corenet_all_recvfrom_netlabel(canna_t)
|
||||
corenet_tcp_sendrecv_generic_if(canna_t)
|
||||
corenet_tcp_sendrecv_all_nodes(canna_t)
|
||||
corenet_tcp_sendrecv_generic_node(canna_t)
|
||||
corenet_tcp_sendrecv_all_ports(canna_t)
|
||||
corenet_tcp_connect_all_ports(canna_t)
|
||||
corenet_sendrecv_all_client_packets(canna_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ccs, 1.3.1)
|
||||
policy_module(ccs, 1.3.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -81,12 +81,12 @@ corenet_all_recvfrom_unlabeled(ccs_t)
|
|||
corenet_all_recvfrom_netlabel(ccs_t)
|
||||
corenet_tcp_sendrecv_generic_if(ccs_t)
|
||||
corenet_udp_sendrecv_generic_if(ccs_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ccs_t)
|
||||
corenet_udp_sendrecv_all_nodes(ccs_t)
|
||||
corenet_tcp_sendrecv_generic_node(ccs_t)
|
||||
corenet_udp_sendrecv_generic_node(ccs_t)
|
||||
corenet_tcp_sendrecv_all_ports(ccs_t)
|
||||
corenet_udp_sendrecv_all_ports(ccs_t)
|
||||
corenet_tcp_bind_all_nodes(ccs_t)
|
||||
corenet_udp_bind_all_nodes(ccs_t)
|
||||
corenet_tcp_bind_generic_node(ccs_t)
|
||||
corenet_udp_bind_generic_node(ccs_t)
|
||||
corenet_tcp_bind_cluster_port(ccs_t)
|
||||
corenet_udp_bind_cluster_port(ccs_t)
|
||||
corenet_udp_bind_netsupport_port(ccs_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cipe, 1.4.0)
|
||||
policy_module(cipe, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -32,9 +32,9 @@ corecmd_exec_bin(ciped_t)
|
|||
corenet_all_recvfrom_unlabeled(ciped_t)
|
||||
corenet_all_recvfrom_netlabel(ciped_t)
|
||||
corenet_udp_sendrecv_generic_if(ciped_t)
|
||||
corenet_udp_sendrecv_all_nodes(ciped_t)
|
||||
corenet_udp_sendrecv_generic_node(ciped_t)
|
||||
corenet_udp_sendrecv_all_ports(ciped_t)
|
||||
corenet_udp_bind_all_nodes(ciped_t)
|
||||
corenet_udp_bind_generic_node(ciped_t)
|
||||
# cipe uses the afs3-bos port (udp 7007)
|
||||
corenet_udp_bind_afs_bos_port(ciped_t)
|
||||
corenet_sendrecv_afs_bos_server_packets(ciped_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(clamav, 1.6.1)
|
||||
policy_module(clamav, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -91,10 +91,10 @@ kernel_read_kernel_sysctls(clamd_t)
|
|||
corenet_all_recvfrom_unlabeled(clamd_t)
|
||||
corenet_all_recvfrom_netlabel(clamd_t)
|
||||
corenet_tcp_sendrecv_generic_if(clamd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(clamd_t)
|
||||
corenet_tcp_sendrecv_generic_node(clamd_t)
|
||||
corenet_tcp_sendrecv_all_ports(clamd_t)
|
||||
corenet_tcp_sendrecv_clamd_port(clamd_t)
|
||||
corenet_tcp_bind_all_nodes(clamd_t)
|
||||
corenet_tcp_bind_generic_node(clamd_t)
|
||||
corenet_tcp_bind_clamd_port(clamd_t)
|
||||
corenet_sendrecv_clamd_server_packets(clamd_t)
|
||||
|
||||
|
|
@ -158,7 +158,7 @@ logging_log_filetrans(freshclam_t, freshclam_var_log_t, file)
|
|||
corenet_all_recvfrom_unlabeled(freshclam_t)
|
||||
corenet_all_recvfrom_netlabel(freshclam_t)
|
||||
corenet_tcp_sendrecv_generic_if(freshclam_t)
|
||||
corenet_tcp_sendrecv_all_nodes(freshclam_t)
|
||||
corenet_tcp_sendrecv_generic_node(freshclam_t)
|
||||
corenet_tcp_sendrecv_all_ports(freshclam_t)
|
||||
corenet_tcp_sendrecv_clamd_port(freshclam_t)
|
||||
corenet_tcp_connect_http_port(freshclam_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(clockspeed, 1.4.0)
|
||||
policy_module(clockspeed, 1.4.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -59,7 +59,7 @@ corenet_all_recvfrom_netlabel(clockspeed_srv_t)
|
|||
corenet_udp_sendrecv_generic_if(clockspeed_srv_t)
|
||||
corenet_udp_sendrecv_generic_node(clockspeed_srv_t)
|
||||
corenet_udp_sendrecv_ntp_port(clockspeed_srv_t)
|
||||
corenet_udp_bind_all_nodes(clockspeed_srv_t)
|
||||
corenet_udp_bind_generic_node(clockspeed_srv_t)
|
||||
corenet_udp_bind_clockspeed_port(clockspeed_srv_t)
|
||||
corenet_sendrecv_clockspeed_server_packets(clockspeed_srv_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(comsat, 1.6.1)
|
||||
policy_module(comsat, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -44,8 +44,8 @@ corenet_all_recvfrom_unlabeled(comsat_t)
|
|||
corenet_all_recvfrom_netlabel(comsat_t)
|
||||
corenet_tcp_sendrecv_generic_if(comsat_t)
|
||||
corenet_udp_sendrecv_generic_if(comsat_t)
|
||||
corenet_tcp_sendrecv_all_nodes(comsat_t)
|
||||
corenet_udp_sendrecv_all_nodes(comsat_t)
|
||||
corenet_tcp_sendrecv_generic_node(comsat_t)
|
||||
corenet_udp_sendrecv_generic_node(comsat_t)
|
||||
corenet_udp_sendrecv_all_ports(comsat_t)
|
||||
|
||||
dev_read_urand(comsat_t)
|
||||
|
|
|
|||
|
|
@ -52,8 +52,8 @@ template(`courier_domain_template',`
|
|||
corenet_all_recvfrom_netlabel(courier_$1_t)
|
||||
corenet_tcp_sendrecv_generic_if(courier_$1_t)
|
||||
corenet_udp_sendrecv_generic_if(courier_$1_t)
|
||||
corenet_tcp_sendrecv_all_nodes(courier_$1_t)
|
||||
corenet_udp_sendrecv_all_nodes(courier_$1_t)
|
||||
corenet_tcp_sendrecv_generic_node(courier_$1_t)
|
||||
corenet_udp_sendrecv_generic_node(courier_$1_t)
|
||||
corenet_tcp_sendrecv_all_ports(courier_$1_t)
|
||||
corenet_udp_sendrecv_all_ports(courier_$1_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(courier, 1.7.0)
|
||||
policy_module(courier, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -123,7 +123,7 @@ files_search_var_lib(courier_tcpd_t)
|
|||
|
||||
corecmd_search_bin(courier_tcpd_t)
|
||||
|
||||
corenet_tcp_bind_all_nodes(courier_tcpd_t)
|
||||
corenet_tcp_bind_generic_node(courier_tcpd_t)
|
||||
corenet_tcp_bind_pop_port(courier_tcpd_t)
|
||||
corenet_sendrecv_pop_server_packets(courier_tcpd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cron, 2.0.1)
|
||||
policy_module(cron, 2.0.2)
|
||||
|
||||
gen_require(`
|
||||
class passwd rootok;
|
||||
|
|
@ -331,8 +331,8 @@ corenet_all_recvfrom_unlabeled(system_cronjob_t)
|
|||
corenet_all_recvfrom_netlabel(system_cronjob_t)
|
||||
corenet_tcp_sendrecv_generic_if(system_cronjob_t)
|
||||
corenet_udp_sendrecv_generic_if(system_cronjob_t)
|
||||
corenet_tcp_sendrecv_all_nodes(system_cronjob_t)
|
||||
corenet_udp_sendrecv_all_nodes(system_cronjob_t)
|
||||
corenet_tcp_sendrecv_generic_node(system_cronjob_t)
|
||||
corenet_udp_sendrecv_generic_node(system_cronjob_t)
|
||||
corenet_tcp_sendrecv_all_ports(system_cronjob_t)
|
||||
corenet_udp_sendrecv_all_ports(system_cronjob_t)
|
||||
|
||||
|
|
@ -522,8 +522,8 @@ corenet_all_recvfrom_unlabeled(cronjob_t)
|
|||
corenet_all_recvfrom_netlabel(cronjob_t)
|
||||
corenet_tcp_sendrecv_generic_if(cronjob_t)
|
||||
corenet_udp_sendrecv_generic_if(cronjob_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cronjob_t)
|
||||
corenet_udp_sendrecv_all_nodes(cronjob_t)
|
||||
corenet_tcp_sendrecv_generic_node(cronjob_t)
|
||||
corenet_udp_sendrecv_generic_node(cronjob_t)
|
||||
corenet_tcp_sendrecv_all_ports(cronjob_t)
|
||||
corenet_udp_sendrecv_all_ports(cronjob_t)
|
||||
corenet_tcp_connect_all_ports(cronjob_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cups, 1.12.1)
|
||||
policy_module(cups, 1.12.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -137,13 +137,13 @@ corenet_all_recvfrom_netlabel(cupsd_t)
|
|||
corenet_tcp_sendrecv_generic_if(cupsd_t)
|
||||
corenet_udp_sendrecv_generic_if(cupsd_t)
|
||||
corenet_raw_sendrecv_generic_if(cupsd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cupsd_t)
|
||||
corenet_udp_sendrecv_all_nodes(cupsd_t)
|
||||
corenet_raw_sendrecv_all_nodes(cupsd_t)
|
||||
corenet_tcp_sendrecv_generic_node(cupsd_t)
|
||||
corenet_udp_sendrecv_generic_node(cupsd_t)
|
||||
corenet_raw_sendrecv_generic_node(cupsd_t)
|
||||
corenet_tcp_sendrecv_all_ports(cupsd_t)
|
||||
corenet_udp_sendrecv_all_ports(cupsd_t)
|
||||
corenet_tcp_bind_all_nodes(cupsd_t)
|
||||
corenet_udp_bind_all_nodes(cupsd_t)
|
||||
corenet_tcp_bind_generic_node(cupsd_t)
|
||||
corenet_udp_bind_generic_node(cupsd_t)
|
||||
corenet_tcp_bind_ipp_port(cupsd_t)
|
||||
corenet_udp_bind_ipp_port(cupsd_t)
|
||||
corenet_tcp_bind_reserved_port(cupsd_t)
|
||||
|
|
@ -316,7 +316,7 @@ kernel_read_kernel_sysctls(cupsd_config_t)
|
|||
corenet_all_recvfrom_unlabeled(cupsd_config_t)
|
||||
corenet_all_recvfrom_netlabel(cupsd_config_t)
|
||||
corenet_tcp_sendrecv_generic_if(cupsd_config_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cupsd_config_t)
|
||||
corenet_tcp_sendrecv_generic_node(cupsd_config_t)
|
||||
corenet_tcp_sendrecv_all_ports(cupsd_config_t)
|
||||
corenet_tcp_connect_all_ports(cupsd_config_t)
|
||||
corenet_sendrecv_all_client_packets(cupsd_config_t)
|
||||
|
|
@ -447,12 +447,12 @@ corenet_all_recvfrom_unlabeled(cupsd_lpd_t)
|
|||
corenet_all_recvfrom_netlabel(cupsd_lpd_t)
|
||||
corenet_tcp_sendrecv_generic_if(cupsd_lpd_t)
|
||||
corenet_udp_sendrecv_generic_if(cupsd_lpd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cupsd_lpd_t)
|
||||
corenet_udp_sendrecv_all_nodes(cupsd_lpd_t)
|
||||
corenet_tcp_sendrecv_generic_node(cupsd_lpd_t)
|
||||
corenet_udp_sendrecv_generic_node(cupsd_lpd_t)
|
||||
corenet_tcp_sendrecv_all_ports(cupsd_lpd_t)
|
||||
corenet_udp_sendrecv_all_ports(cupsd_lpd_t)
|
||||
corenet_tcp_bind_all_nodes(cupsd_lpd_t)
|
||||
corenet_udp_bind_all_nodes(cupsd_lpd_t)
|
||||
corenet_tcp_bind_generic_node(cupsd_lpd_t)
|
||||
corenet_udp_bind_generic_node(cupsd_lpd_t)
|
||||
corenet_tcp_connect_ipp_port(cupsd_lpd_t)
|
||||
|
||||
dev_read_urand(cupsd_lpd_t)
|
||||
|
|
@ -511,13 +511,13 @@ corenet_all_recvfrom_netlabel(hplip_t)
|
|||
corenet_tcp_sendrecv_generic_if(hplip_t)
|
||||
corenet_udp_sendrecv_generic_if(hplip_t)
|
||||
corenet_raw_sendrecv_generic_if(hplip_t)
|
||||
corenet_tcp_sendrecv_all_nodes(hplip_t)
|
||||
corenet_udp_sendrecv_all_nodes(hplip_t)
|
||||
corenet_raw_sendrecv_all_nodes(hplip_t)
|
||||
corenet_tcp_sendrecv_generic_node(hplip_t)
|
||||
corenet_udp_sendrecv_generic_node(hplip_t)
|
||||
corenet_raw_sendrecv_generic_node(hplip_t)
|
||||
corenet_tcp_sendrecv_all_ports(hplip_t)
|
||||
corenet_udp_sendrecv_all_ports(hplip_t)
|
||||
corenet_tcp_bind_all_nodes(hplip_t)
|
||||
corenet_udp_bind_all_nodes(hplip_t)
|
||||
corenet_tcp_bind_generic_node(hplip_t)
|
||||
corenet_udp_bind_generic_node(hplip_t)
|
||||
corenet_tcp_bind_hplip_port(hplip_t)
|
||||
corenet_tcp_connect_hplip_port(hplip_t)
|
||||
corenet_tcp_connect_ipp_port(hplip_t)
|
||||
|
|
@ -602,9 +602,9 @@ kernel_read_proc_symlinks(ptal_t)
|
|||
corenet_all_recvfrom_unlabeled(ptal_t)
|
||||
corenet_all_recvfrom_netlabel(ptal_t)
|
||||
corenet_tcp_sendrecv_generic_if(ptal_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ptal_t)
|
||||
corenet_tcp_sendrecv_generic_node(ptal_t)
|
||||
corenet_tcp_sendrecv_all_ports(ptal_t)
|
||||
corenet_tcp_bind_all_nodes(ptal_t)
|
||||
corenet_tcp_bind_generic_node(ptal_t)
|
||||
corenet_tcp_bind_ptal_port(ptal_t)
|
||||
|
||||
dev_read_sysfs(ptal_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cvs, 1.7.1)
|
||||
policy_module(cvs, 1.7.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -62,8 +62,8 @@ corenet_all_recvfrom_unlabeled(cvs_t)
|
|||
corenet_all_recvfrom_netlabel(cvs_t)
|
||||
corenet_tcp_sendrecv_generic_if(cvs_t)
|
||||
corenet_udp_sendrecv_generic_if(cvs_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cvs_t)
|
||||
corenet_udp_sendrecv_all_nodes(cvs_t)
|
||||
corenet_tcp_sendrecv_generic_node(cvs_t)
|
||||
corenet_udp_sendrecv_generic_node(cvs_t)
|
||||
corenet_tcp_sendrecv_all_ports(cvs_t)
|
||||
corenet_udp_sendrecv_all_ports(cvs_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cyphesis, 1.1.0)
|
||||
policy_module(cyphesis, 1.1.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -50,9 +50,9 @@ corecmd_getattr_bin_files(cyphesis_t)
|
|||
|
||||
corenet_all_recvfrom_unlabeled(cyphesis_t)
|
||||
corenet_tcp_sendrecv_generic_if(cyphesis_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cyphesis_t)
|
||||
corenet_tcp_sendrecv_generic_node(cyphesis_t)
|
||||
corenet_tcp_sendrecv_all_ports(cyphesis_t)
|
||||
corenet_tcp_bind_all_nodes(cyphesis_t)
|
||||
corenet_tcp_bind_generic_node(cyphesis_t)
|
||||
corenet_tcp_bind_cyphesis_port(cyphesis_t)
|
||||
corenet_sendrecv_cyphesis_server_packets(cyphesis_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(cyrus, 1.8.1)
|
||||
policy_module(cyrus, 1.8.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -67,11 +67,11 @@ corenet_all_recvfrom_unlabeled(cyrus_t)
|
|||
corenet_all_recvfrom_netlabel(cyrus_t)
|
||||
corenet_tcp_sendrecv_generic_if(cyrus_t)
|
||||
corenet_udp_sendrecv_generic_if(cyrus_t)
|
||||
corenet_tcp_sendrecv_all_nodes(cyrus_t)
|
||||
corenet_udp_sendrecv_all_nodes(cyrus_t)
|
||||
corenet_tcp_sendrecv_generic_node(cyrus_t)
|
||||
corenet_udp_sendrecv_generic_node(cyrus_t)
|
||||
corenet_tcp_sendrecv_all_ports(cyrus_t)
|
||||
corenet_udp_sendrecv_all_ports(cyrus_t)
|
||||
corenet_tcp_bind_all_nodes(cyrus_t)
|
||||
corenet_tcp_bind_generic_node(cyrus_t)
|
||||
corenet_tcp_bind_mail_port(cyrus_t)
|
||||
corenet_tcp_bind_lmtp_port(cyrus_t)
|
||||
corenet_tcp_bind_pop_port(cyrus_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dante, 1.6.0)
|
||||
policy_module(dante, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -42,11 +42,11 @@ corenet_all_recvfrom_unlabeled(dante_t)
|
|||
corenet_all_recvfrom_netlabel(dante_t)
|
||||
corenet_tcp_sendrecv_generic_if(dante_t)
|
||||
corenet_udp_sendrecv_generic_if(dante_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dante_t)
|
||||
corenet_udp_sendrecv_all_nodes(dante_t)
|
||||
corenet_tcp_sendrecv_generic_node(dante_t)
|
||||
corenet_udp_sendrecv_generic_node(dante_t)
|
||||
corenet_tcp_sendrecv_all_ports(dante_t)
|
||||
corenet_udp_sendrecv_all_ports(dante_t)
|
||||
corenet_tcp_bind_all_nodes(dante_t)
|
||||
corenet_tcp_bind_generic_node(dante_t)
|
||||
#TODO: no portcons for this type
|
||||
#allow dante_t socks_port_t:tcp_socket name_bind;
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dbskk, 1.4.1)
|
||||
policy_module(dbskk, 1.4.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -52,8 +52,8 @@ corenet_all_recvfrom_unlabeled(dbskkd_t)
|
|||
corenet_all_recvfrom_netlabel(dbskkd_t)
|
||||
corenet_tcp_sendrecv_generic_if(dbskkd_t)
|
||||
corenet_udp_sendrecv_generic_if(dbskkd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dbskkd_t)
|
||||
corenet_udp_sendrecv_all_nodes(dbskkd_t)
|
||||
corenet_tcp_sendrecv_generic_node(dbskkd_t)
|
||||
corenet_udp_sendrecv_generic_node(dbskkd_t)
|
||||
corenet_tcp_sendrecv_all_ports(dbskkd_t)
|
||||
corenet_udp_sendrecv_all_ports(dbskkd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -109,9 +109,9 @@ template(`dbus_role_template',`
|
|||
corenet_all_recvfrom_unlabeled($1_dbusd_t)
|
||||
corenet_all_recvfrom_netlabel($1_dbusd_t)
|
||||
corenet_tcp_sendrecv_generic_if($1_dbusd_t)
|
||||
corenet_tcp_sendrecv_all_nodes($1_dbusd_t)
|
||||
corenet_tcp_sendrecv_generic_node($1_dbusd_t)
|
||||
corenet_tcp_sendrecv_all_ports($1_dbusd_t)
|
||||
corenet_tcp_bind_all_nodes($1_dbusd_t)
|
||||
corenet_tcp_bind_generic_node($1_dbusd_t)
|
||||
corenet_tcp_bind_reserved_port($1_dbusd_t)
|
||||
|
||||
dev_read_urand($1_dbusd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dbus, 1.10.1)
|
||||
policy_module(dbus, 1.10.2)
|
||||
|
||||
gen_require(`
|
||||
class dbus all_dbus_perms;
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dcc, 1.7.0)
|
||||
policy_module(dcc, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -99,7 +99,7 @@ read_lnk_files_pattern(cdcc_t, dcc_var_t, dcc_var_t)
|
|||
corenet_all_recvfrom_unlabeled(cdcc_t)
|
||||
corenet_all_recvfrom_netlabel(cdcc_t)
|
||||
corenet_udp_sendrecv_generic_if(cdcc_t)
|
||||
corenet_udp_sendrecv_all_nodes(cdcc_t)
|
||||
corenet_udp_sendrecv_generic_node(cdcc_t)
|
||||
corenet_udp_sendrecv_all_ports(cdcc_t)
|
||||
|
||||
files_read_etc_files(cdcc_t)
|
||||
|
|
@ -138,7 +138,7 @@ kernel_read_system_state(dcc_client_t)
|
|||
corenet_all_recvfrom_unlabeled(dcc_client_t)
|
||||
corenet_all_recvfrom_netlabel(dcc_client_t)
|
||||
corenet_udp_sendrecv_generic_if(dcc_client_t)
|
||||
corenet_udp_sendrecv_all_nodes(dcc_client_t)
|
||||
corenet_udp_sendrecv_generic_node(dcc_client_t)
|
||||
corenet_udp_sendrecv_all_ports(dcc_client_t)
|
||||
|
||||
files_read_etc_files(dcc_client_t)
|
||||
|
|
@ -179,7 +179,7 @@ kernel_read_system_state(dcc_dbclean_t)
|
|||
corenet_all_recvfrom_unlabeled(dcc_dbclean_t)
|
||||
corenet_all_recvfrom_netlabel(dcc_dbclean_t)
|
||||
corenet_udp_sendrecv_generic_if(dcc_dbclean_t)
|
||||
corenet_udp_sendrecv_all_nodes(dcc_dbclean_t)
|
||||
corenet_udp_sendrecv_generic_node(dcc_dbclean_t)
|
||||
corenet_udp_sendrecv_all_ports(dcc_dbclean_t)
|
||||
|
||||
files_read_etc_files(dcc_dbclean_t)
|
||||
|
|
@ -234,9 +234,9 @@ kernel_read_kernel_sysctls(dccd_t)
|
|||
corenet_all_recvfrom_unlabeled(dccd_t)
|
||||
corenet_all_recvfrom_netlabel(dccd_t)
|
||||
corenet_udp_sendrecv_generic_if(dccd_t)
|
||||
corenet_udp_sendrecv_all_nodes(dccd_t)
|
||||
corenet_udp_sendrecv_generic_node(dccd_t)
|
||||
corenet_udp_sendrecv_all_ports(dccd_t)
|
||||
corenet_udp_bind_all_nodes(dccd_t)
|
||||
corenet_udp_bind_generic_node(dccd_t)
|
||||
corenet_udp_bind_dcc_port(dccd_t)
|
||||
corenet_sendrecv_dcc_server_packets(dccd_t)
|
||||
|
||||
|
|
@ -302,7 +302,7 @@ kernel_read_kernel_sysctls(dccifd_t)
|
|||
corenet_all_recvfrom_unlabeled(dccifd_t)
|
||||
corenet_all_recvfrom_netlabel(dccifd_t)
|
||||
corenet_udp_sendrecv_generic_if(dccifd_t)
|
||||
corenet_udp_sendrecv_all_nodes(dccifd_t)
|
||||
corenet_udp_sendrecv_generic_node(dccifd_t)
|
||||
corenet_udp_sendrecv_all_ports(dccifd_t)
|
||||
|
||||
dev_read_sysfs(dccifd_t)
|
||||
|
|
@ -366,7 +366,7 @@ kernel_read_kernel_sysctls(dccm_t)
|
|||
corenet_all_recvfrom_unlabeled(dccm_t)
|
||||
corenet_all_recvfrom_netlabel(dccm_t)
|
||||
corenet_udp_sendrecv_generic_if(dccm_t)
|
||||
corenet_udp_sendrecv_all_nodes(dccm_t)
|
||||
corenet_udp_sendrecv_generic_node(dccm_t)
|
||||
corenet_udp_sendrecv_all_ports(dccm_t)
|
||||
|
||||
dev_read_sysfs(dccm_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ddclient, 1.7.0)
|
||||
policy_module(ddclient, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -71,8 +71,8 @@ corenet_all_recvfrom_unlabeled(ddclient_t)
|
|||
corenet_all_recvfrom_netlabel(ddclient_t)
|
||||
corenet_tcp_sendrecv_generic_if(ddclient_t)
|
||||
corenet_udp_sendrecv_generic_if(ddclient_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ddclient_t)
|
||||
corenet_udp_sendrecv_all_nodes(ddclient_t)
|
||||
corenet_tcp_sendrecv_generic_node(ddclient_t)
|
||||
corenet_udp_sendrecv_generic_node(ddclient_t)
|
||||
corenet_tcp_sendrecv_all_ports(ddclient_t)
|
||||
corenet_udp_sendrecv_all_ports(ddclient_t)
|
||||
corenet_tcp_connect_all_ports(ddclient_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dhcp, 1.7.1)
|
||||
policy_module(dhcp, 1.7.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -60,13 +60,13 @@ corenet_all_recvfrom_netlabel(dhcpd_t)
|
|||
corenet_tcp_sendrecv_generic_if(dhcpd_t)
|
||||
corenet_udp_sendrecv_generic_if(dhcpd_t)
|
||||
corenet_raw_sendrecv_generic_if(dhcpd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dhcpd_t)
|
||||
corenet_udp_sendrecv_all_nodes(dhcpd_t)
|
||||
corenet_raw_sendrecv_all_nodes(dhcpd_t)
|
||||
corenet_tcp_sendrecv_generic_node(dhcpd_t)
|
||||
corenet_udp_sendrecv_generic_node(dhcpd_t)
|
||||
corenet_raw_sendrecv_generic_node(dhcpd_t)
|
||||
corenet_tcp_sendrecv_all_ports(dhcpd_t)
|
||||
corenet_udp_sendrecv_all_ports(dhcpd_t)
|
||||
corenet_tcp_bind_all_nodes(dhcpd_t)
|
||||
corenet_udp_bind_all_nodes(dhcpd_t)
|
||||
corenet_tcp_bind_generic_node(dhcpd_t)
|
||||
corenet_udp_bind_generic_node(dhcpd_t)
|
||||
corenet_tcp_bind_dhcpd_port(dhcpd_t)
|
||||
corenet_udp_bind_dhcpd_port(dhcpd_t)
|
||||
corenet_udp_bind_pxe_port(dhcpd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dictd, 1.6.1)
|
||||
policy_module(dictd, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -51,12 +51,12 @@ corenet_all_recvfrom_netlabel(dictd_t)
|
|||
corenet_tcp_sendrecv_generic_if(dictd_t)
|
||||
corenet_raw_sendrecv_generic_if(dictd_t)
|
||||
corenet_udp_sendrecv_generic_if(dictd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dictd_t)
|
||||
corenet_udp_sendrecv_all_nodes(dictd_t)
|
||||
corenet_raw_sendrecv_all_nodes(dictd_t)
|
||||
corenet_tcp_sendrecv_generic_node(dictd_t)
|
||||
corenet_udp_sendrecv_generic_node(dictd_t)
|
||||
corenet_raw_sendrecv_generic_node(dictd_t)
|
||||
corenet_tcp_sendrecv_all_ports(dictd_t)
|
||||
corenet_udp_sendrecv_all_ports(dictd_t)
|
||||
corenet_tcp_bind_all_nodes(dictd_t)
|
||||
corenet_tcp_bind_generic_node(dictd_t)
|
||||
corenet_tcp_bind_dict_port(dictd_t)
|
||||
corenet_sendrecv_dict_server_packets(dictd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(distcc, 1.7.1)
|
||||
policy_module(distcc, 1.7.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -49,11 +49,11 @@ corenet_all_recvfrom_unlabeled(distccd_t)
|
|||
corenet_all_recvfrom_netlabel(distccd_t)
|
||||
corenet_tcp_sendrecv_generic_if(distccd_t)
|
||||
corenet_udp_sendrecv_generic_if(distccd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(distccd_t)
|
||||
corenet_udp_sendrecv_all_nodes(distccd_t)
|
||||
corenet_tcp_sendrecv_generic_node(distccd_t)
|
||||
corenet_udp_sendrecv_generic_node(distccd_t)
|
||||
corenet_tcp_sendrecv_all_ports(distccd_t)
|
||||
corenet_udp_sendrecv_all_ports(distccd_t)
|
||||
corenet_tcp_bind_all_nodes(distccd_t)
|
||||
corenet_tcp_bind_generic_node(distccd_t)
|
||||
corenet_tcp_bind_distccd_port(distccd_t)
|
||||
corenet_sendrecv_distccd_server_packets(distccd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -36,12 +36,12 @@ template(`djbdns_daemontools_domain_template',`
|
|||
corenet_all_recvfrom_netlabel(djbdns_$1_t)
|
||||
corenet_tcp_sendrecv_generic_if(djbdns_$1_t)
|
||||
corenet_udp_sendrecv_generic_if(djbdns_$1_t)
|
||||
corenet_tcp_sendrecv_all_nodes(djbdns_$1_t)
|
||||
corenet_udp_sendrecv_all_nodes(djbdns_$1_t)
|
||||
corenet_tcp_sendrecv_generic_node(djbdns_$1_t)
|
||||
corenet_udp_sendrecv_generic_node(djbdns_$1_t)
|
||||
corenet_tcp_sendrecv_all_ports(djbdns_$1_t)
|
||||
corenet_udp_sendrecv_all_ports(djbdns_$1_t)
|
||||
corenet_tcp_bind_all_nodes(djbdns_$1_t)
|
||||
corenet_udp_bind_all_nodes(djbdns_$1_t)
|
||||
corenet_tcp_bind_generic_node(djbdns_$1_t)
|
||||
corenet_udp_bind_generic_node(djbdns_$1_t)
|
||||
corenet_tcp_bind_dns_port(djbdns_$1_t)
|
||||
corenet_udp_bind_dns_port(djbdns_$1_t)
|
||||
corenet_udp_bind_generic_port(djbdns_$1_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(djbdns, 1.2.1)
|
||||
policy_module(djbdns, 1.2.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dnsmasq, 1.7.0)
|
||||
policy_module(dnsmasq, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -50,13 +50,13 @@ corenet_all_recvfrom_netlabel(dnsmasq_t)
|
|||
corenet_tcp_sendrecv_generic_if(dnsmasq_t)
|
||||
corenet_udp_sendrecv_generic_if(dnsmasq_t)
|
||||
corenet_raw_sendrecv_generic_if(dnsmasq_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dnsmasq_t)
|
||||
corenet_udp_sendrecv_all_nodes(dnsmasq_t)
|
||||
corenet_raw_sendrecv_all_nodes(dnsmasq_t)
|
||||
corenet_tcp_sendrecv_generic_node(dnsmasq_t)
|
||||
corenet_udp_sendrecv_generic_node(dnsmasq_t)
|
||||
corenet_raw_sendrecv_generic_node(dnsmasq_t)
|
||||
corenet_tcp_sendrecv_all_ports(dnsmasq_t)
|
||||
corenet_udp_sendrecv_all_ports(dnsmasq_t)
|
||||
corenet_tcp_bind_all_nodes(dnsmasq_t)
|
||||
corenet_udp_bind_all_nodes(dnsmasq_t)
|
||||
corenet_tcp_bind_generic_node(dnsmasq_t)
|
||||
corenet_udp_bind_generic_node(dnsmasq_t)
|
||||
corenet_tcp_bind_dns_port(dnsmasq_t)
|
||||
corenet_udp_bind_all_ports(dnsmasq_t)
|
||||
corenet_sendrecv_dns_server_packets(dnsmasq_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(dovecot, 1.10.1)
|
||||
policy_module(dovecot, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -72,9 +72,9 @@ kernel_read_system_state(dovecot_t)
|
|||
corenet_all_recvfrom_unlabeled(dovecot_t)
|
||||
corenet_all_recvfrom_netlabel(dovecot_t)
|
||||
corenet_tcp_sendrecv_generic_if(dovecot_t)
|
||||
corenet_tcp_sendrecv_all_nodes(dovecot_t)
|
||||
corenet_tcp_sendrecv_generic_node(dovecot_t)
|
||||
corenet_tcp_sendrecv_all_ports(dovecot_t)
|
||||
corenet_tcp_bind_all_nodes(dovecot_t)
|
||||
corenet_tcp_bind_generic_node(dovecot_t)
|
||||
corenet_tcp_bind_pop_port(dovecot_t)
|
||||
corenet_tcp_connect_all_ports(dovecot_t)
|
||||
corenet_tcp_connect_postgresql_port(dovecot_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(exim, 1.3.1)
|
||||
policy_module(exim, 1.3.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -73,9 +73,9 @@ corecmd_search_bin(exim_t)
|
|||
|
||||
corenet_all_recvfrom_unlabeled(exim_t)
|
||||
corenet_tcp_sendrecv_generic_if(exim_t)
|
||||
corenet_tcp_sendrecv_all_nodes(exim_t)
|
||||
corenet_tcp_sendrecv_generic_node(exim_t)
|
||||
corenet_tcp_sendrecv_all_ports(exim_t)
|
||||
corenet_tcp_bind_all_nodes(exim_t)
|
||||
corenet_tcp_bind_generic_node(exim_t)
|
||||
corenet_tcp_bind_smtp_port(exim_t)
|
||||
corenet_tcp_bind_amavisd_send_port(exim_t)
|
||||
corenet_tcp_connect_auth_port(exim_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(fail2ban, 1.2.0)
|
||||
policy_module(fail2ban, 1.2.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -50,7 +50,7 @@ corecmd_exec_shell(fail2ban_t)
|
|||
corenet_all_recvfrom_unlabeled(fail2ban_t)
|
||||
corenet_all_recvfrom_netlabel(fail2ban_t)
|
||||
corenet_tcp_sendrecv_generic_if(fail2ban_t)
|
||||
corenet_tcp_sendrecv_all_nodes(fail2ban_t)
|
||||
corenet_tcp_sendrecv_generic_node(fail2ban_t)
|
||||
corenet_tcp_sendrecv_all_ports(fail2ban_t)
|
||||
corenet_tcp_connect_whois_port(fail2ban_t)
|
||||
corenet_sendrecv_whois_client_packets(fail2ban_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(fetchmail, 1.8.0)
|
||||
policy_module(fetchmail, 1.8.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -50,8 +50,8 @@ corenet_all_recvfrom_unlabeled(fetchmail_t)
|
|||
corenet_all_recvfrom_netlabel(fetchmail_t)
|
||||
corenet_tcp_sendrecv_generic_if(fetchmail_t)
|
||||
corenet_udp_sendrecv_generic_if(fetchmail_t)
|
||||
corenet_tcp_sendrecv_all_nodes(fetchmail_t)
|
||||
corenet_udp_sendrecv_all_nodes(fetchmail_t)
|
||||
corenet_tcp_sendrecv_generic_node(fetchmail_t)
|
||||
corenet_udp_sendrecv_generic_node(fetchmail_t)
|
||||
corenet_tcp_sendrecv_dns_port(fetchmail_t)
|
||||
corenet_udp_sendrecv_dns_port(fetchmail_t)
|
||||
corenet_tcp_sendrecv_pop_port(fetchmail_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(finger, 1.8.1)
|
||||
policy_module(finger, 1.8.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -51,11 +51,11 @@ corenet_all_recvfrom_unlabeled(fingerd_t)
|
|||
corenet_all_recvfrom_netlabel(fingerd_t)
|
||||
corenet_tcp_sendrecv_generic_if(fingerd_t)
|
||||
corenet_udp_sendrecv_generic_if(fingerd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(fingerd_t)
|
||||
corenet_udp_sendrecv_all_nodes(fingerd_t)
|
||||
corenet_tcp_sendrecv_generic_node(fingerd_t)
|
||||
corenet_udp_sendrecv_generic_node(fingerd_t)
|
||||
corenet_tcp_sendrecv_all_ports(fingerd_t)
|
||||
corenet_udp_sendrecv_all_ports(fingerd_t)
|
||||
corenet_tcp_bind_all_nodes(fingerd_t)
|
||||
corenet_tcp_bind_generic_node(fingerd_t)
|
||||
corenet_tcp_bind_fingerd_port(fingerd_t)
|
||||
|
||||
dev_read_sysfs(fingerd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ftp, 1.10.1)
|
||||
policy_module(ftp, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -138,11 +138,11 @@ corenet_all_recvfrom_unlabeled(ftpd_t)
|
|||
corenet_all_recvfrom_netlabel(ftpd_t)
|
||||
corenet_tcp_sendrecv_generic_if(ftpd_t)
|
||||
corenet_udp_sendrecv_generic_if(ftpd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ftpd_t)
|
||||
corenet_udp_sendrecv_all_nodes(ftpd_t)
|
||||
corenet_tcp_sendrecv_generic_node(ftpd_t)
|
||||
corenet_udp_sendrecv_generic_node(ftpd_t)
|
||||
corenet_tcp_sendrecv_all_ports(ftpd_t)
|
||||
corenet_udp_sendrecv_all_ports(ftpd_t)
|
||||
corenet_tcp_bind_all_nodes(ftpd_t)
|
||||
corenet_tcp_bind_generic_node(ftpd_t)
|
||||
corenet_tcp_bind_ftp_port(ftpd_t)
|
||||
corenet_tcp_bind_ftp_data_port(ftpd_t)
|
||||
corenet_tcp_bind_generic_port(ftpd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(gatekeeper, 1.6.0)
|
||||
policy_module(gatekeeper, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -57,12 +57,12 @@ corenet_all_recvfrom_unlabeled(gatekeeper_t)
|
|||
corenet_all_recvfrom_netlabel(gatekeeper_t)
|
||||
corenet_tcp_sendrecv_generic_if(gatekeeper_t)
|
||||
corenet_udp_sendrecv_generic_if(gatekeeper_t)
|
||||
corenet_tcp_sendrecv_all_nodes(gatekeeper_t)
|
||||
corenet_udp_sendrecv_all_nodes(gatekeeper_t)
|
||||
corenet_tcp_sendrecv_generic_node(gatekeeper_t)
|
||||
corenet_udp_sendrecv_generic_node(gatekeeper_t)
|
||||
corenet_tcp_sendrecv_all_ports(gatekeeper_t)
|
||||
corenet_udp_sendrecv_all_ports(gatekeeper_t)
|
||||
corenet_tcp_bind_all_nodes(gatekeeper_t)
|
||||
corenet_udp_bind_all_nodes(gatekeeper_t)
|
||||
corenet_tcp_bind_generic_node(gatekeeper_t)
|
||||
corenet_udp_bind_generic_node(gatekeeper_t)
|
||||
corenet_tcp_bind_gatekeeper_port(gatekeeper_t)
|
||||
corenet_udp_bind_gatekeeper_port(gatekeeper_t)
|
||||
corenet_sendrecv_gatekeeper_server_packets(gatekeeper_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(hal, 1.11.1)
|
||||
policy_module(hal, 1.11.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -104,8 +104,8 @@ corenet_all_recvfrom_unlabeled(hald_t)
|
|||
corenet_all_recvfrom_netlabel(hald_t)
|
||||
corenet_tcp_sendrecv_generic_if(hald_t)
|
||||
corenet_udp_sendrecv_generic_if(hald_t)
|
||||
corenet_tcp_sendrecv_all_nodes(hald_t)
|
||||
corenet_udp_sendrecv_all_nodes(hald_t)
|
||||
corenet_tcp_sendrecv_generic_node(hald_t)
|
||||
corenet_udp_sendrecv_generic_node(hald_t)
|
||||
corenet_tcp_sendrecv_all_ports(hald_t)
|
||||
corenet_udp_sendrecv_all_ports(hald_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(howl, 1.7.1)
|
||||
policy_module(howl, 1.7.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -38,12 +38,12 @@ corenet_all_recvfrom_unlabeled(howl_t)
|
|||
corenet_all_recvfrom_netlabel(howl_t)
|
||||
corenet_tcp_sendrecv_generic_if(howl_t)
|
||||
corenet_udp_sendrecv_generic_if(howl_t)
|
||||
corenet_tcp_sendrecv_all_nodes(howl_t)
|
||||
corenet_udp_sendrecv_all_nodes(howl_t)
|
||||
corenet_tcp_sendrecv_generic_node(howl_t)
|
||||
corenet_udp_sendrecv_generic_node(howl_t)
|
||||
corenet_tcp_sendrecv_all_ports(howl_t)
|
||||
corenet_udp_sendrecv_all_ports(howl_t)
|
||||
corenet_tcp_bind_all_nodes(howl_t)
|
||||
corenet_udp_bind_all_nodes(howl_t)
|
||||
corenet_tcp_bind_generic_node(howl_t)
|
||||
corenet_udp_bind_generic_node(howl_t)
|
||||
corenet_tcp_bind_howl_port(howl_t)
|
||||
corenet_udp_bind_howl_port(howl_t)
|
||||
corenet_sendrecv_howl_server_packets(howl_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(i18n_input, 1.7.0)
|
||||
policy_module(i18n_input, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -41,11 +41,11 @@ corenet_all_recvfrom_unlabeled(i18n_input_t)
|
|||
corenet_all_recvfrom_netlabel(i18n_input_t)
|
||||
corenet_tcp_sendrecv_generic_if(i18n_input_t)
|
||||
corenet_udp_sendrecv_generic_if(i18n_input_t)
|
||||
corenet_tcp_sendrecv_all_nodes(i18n_input_t)
|
||||
corenet_udp_sendrecv_all_nodes(i18n_input_t)
|
||||
corenet_tcp_sendrecv_generic_node(i18n_input_t)
|
||||
corenet_udp_sendrecv_generic_node(i18n_input_t)
|
||||
corenet_tcp_sendrecv_all_ports(i18n_input_t)
|
||||
corenet_udp_sendrecv_all_ports(i18n_input_t)
|
||||
corenet_tcp_bind_all_nodes(i18n_input_t)
|
||||
corenet_tcp_bind_generic_node(i18n_input_t)
|
||||
corenet_tcp_bind_i18n_input_port(i18n_input_t)
|
||||
corenet_tcp_connect_all_ports(i18n_input_t)
|
||||
corenet_sendrecv_i18n_input_server_packets(i18n_input_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(imaze, 1.6.0)
|
||||
policy_module(imaze, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -59,12 +59,12 @@ corenet_all_recvfrom_unlabeled(imazesrv_t)
|
|||
corenet_all_recvfrom_netlabel(imazesrv_t)
|
||||
corenet_tcp_sendrecv_generic_if(imazesrv_t)
|
||||
corenet_udp_sendrecv_generic_if(imazesrv_t)
|
||||
corenet_tcp_sendrecv_all_nodes(imazesrv_t)
|
||||
corenet_udp_sendrecv_all_nodes(imazesrv_t)
|
||||
corenet_tcp_sendrecv_generic_node(imazesrv_t)
|
||||
corenet_udp_sendrecv_generic_node(imazesrv_t)
|
||||
corenet_tcp_sendrecv_all_ports(imazesrv_t)
|
||||
corenet_udp_sendrecv_all_ports(imazesrv_t)
|
||||
corenet_tcp_bind_all_nodes(imazesrv_t)
|
||||
corenet_udp_bind_all_nodes(imazesrv_t)
|
||||
corenet_tcp_bind_generic_node(imazesrv_t)
|
||||
corenet_udp_bind_generic_node(imazesrv_t)
|
||||
corenet_tcp_bind_imaze_port(imazesrv_t)
|
||||
corenet_udp_bind_imaze_port(imazesrv_t)
|
||||
corenet_sendrecv_imaze_server_packets(imazesrv_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(inetd, 1.9.1)
|
||||
policy_module(inetd, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -70,12 +70,12 @@ corenet_all_recvfrom_unlabeled(inetd_t)
|
|||
corenet_all_recvfrom_netlabel(inetd_t)
|
||||
corenet_tcp_sendrecv_generic_if(inetd_t)
|
||||
corenet_udp_sendrecv_generic_if(inetd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(inetd_t)
|
||||
corenet_udp_sendrecv_all_nodes(inetd_t)
|
||||
corenet_tcp_sendrecv_generic_node(inetd_t)
|
||||
corenet_udp_sendrecv_generic_node(inetd_t)
|
||||
corenet_tcp_sendrecv_all_ports(inetd_t)
|
||||
corenet_udp_sendrecv_all_ports(inetd_t)
|
||||
corenet_tcp_bind_all_nodes(inetd_t)
|
||||
corenet_udp_bind_all_nodes(inetd_t)
|
||||
corenet_tcp_bind_generic_node(inetd_t)
|
||||
corenet_udp_bind_generic_node(inetd_t)
|
||||
corenet_tcp_connect_all_ports(inetd_t)
|
||||
corenet_sendrecv_all_client_packets(inetd_t)
|
||||
|
||||
|
|
@ -210,8 +210,8 @@ corenet_all_recvfrom_unlabeled(inetd_child_t)
|
|||
corenet_all_recvfrom_netlabel(inetd_child_t)
|
||||
corenet_tcp_sendrecv_generic_if(inetd_child_t)
|
||||
corenet_udp_sendrecv_generic_if(inetd_child_t)
|
||||
corenet_tcp_sendrecv_all_nodes(inetd_child_t)
|
||||
corenet_udp_sendrecv_all_nodes(inetd_child_t)
|
||||
corenet_tcp_sendrecv_generic_node(inetd_child_t)
|
||||
corenet_udp_sendrecv_generic_node(inetd_child_t)
|
||||
corenet_tcp_sendrecv_all_ports(inetd_child_t)
|
||||
corenet_udp_sendrecv_all_ports(inetd_child_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(inn, 1.8.1)
|
||||
policy_module(inn, 1.8.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -70,11 +70,11 @@ corenet_all_recvfrom_unlabeled(innd_t)
|
|||
corenet_all_recvfrom_netlabel(innd_t)
|
||||
corenet_tcp_sendrecv_generic_if(innd_t)
|
||||
corenet_udp_sendrecv_generic_if(innd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(innd_t)
|
||||
corenet_udp_sendrecv_all_nodes(innd_t)
|
||||
corenet_tcp_sendrecv_generic_node(innd_t)
|
||||
corenet_udp_sendrecv_generic_node(innd_t)
|
||||
corenet_tcp_sendrecv_all_ports(innd_t)
|
||||
corenet_udp_sendrecv_all_ports(innd_t)
|
||||
corenet_tcp_bind_all_nodes(innd_t)
|
||||
corenet_tcp_bind_generic_node(innd_t)
|
||||
corenet_tcp_bind_innd_port(innd_t)
|
||||
corenet_tcp_connect_all_ports(innd_t)
|
||||
corenet_sendrecv_innd_server_packets(innd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ircd, 1.6.0)
|
||||
policy_module(ircd, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -54,11 +54,11 @@ corenet_all_recvfrom_unlabeled(ircd_t)
|
|||
corenet_all_recvfrom_netlabel(ircd_t)
|
||||
corenet_tcp_sendrecv_generic_if(ircd_t)
|
||||
corenet_udp_sendrecv_generic_if(ircd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ircd_t)
|
||||
corenet_udp_sendrecv_all_nodes(ircd_t)
|
||||
corenet_tcp_sendrecv_generic_node(ircd_t)
|
||||
corenet_udp_sendrecv_generic_node(ircd_t)
|
||||
corenet_tcp_sendrecv_all_ports(ircd_t)
|
||||
corenet_udp_sendrecv_all_ports(ircd_t)
|
||||
corenet_tcp_bind_all_nodes(ircd_t)
|
||||
corenet_tcp_bind_generic_node(ircd_t)
|
||||
corenet_tcp_bind_ircd_port(ircd_t)
|
||||
corenet_sendrecv_ircd_server_packets(ircd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(jabber, 1.7.0)
|
||||
policy_module(jabber, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -51,11 +51,11 @@ corenet_all_recvfrom_unlabeled(jabberd_t)
|
|||
corenet_all_recvfrom_netlabel(jabberd_t)
|
||||
corenet_tcp_sendrecv_generic_if(jabberd_t)
|
||||
corenet_udp_sendrecv_generic_if(jabberd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(jabberd_t)
|
||||
corenet_udp_sendrecv_all_nodes(jabberd_t)
|
||||
corenet_tcp_sendrecv_generic_node(jabberd_t)
|
||||
corenet_udp_sendrecv_generic_node(jabberd_t)
|
||||
corenet_tcp_sendrecv_all_ports(jabberd_t)
|
||||
corenet_udp_sendrecv_all_ports(jabberd_t)
|
||||
corenet_tcp_bind_all_nodes(jabberd_t)
|
||||
corenet_tcp_bind_generic_node(jabberd_t)
|
||||
corenet_tcp_bind_jabber_client_port(jabberd_t)
|
||||
corenet_tcp_bind_jabber_interserver_port(jabberd_t)
|
||||
corenet_sendrecv_jabber_client_server_packets(jabberd_t)
|
||||
|
|
|
|||
|
|
@ -91,12 +91,12 @@ interface(`kerberos_use',`
|
|||
corenet_all_recvfrom_netlabel($1)
|
||||
corenet_tcp_sendrecv_generic_if($1)
|
||||
corenet_udp_sendrecv_generic_if($1)
|
||||
corenet_tcp_sendrecv_all_nodes($1)
|
||||
corenet_udp_sendrecv_all_nodes($1)
|
||||
corenet_tcp_sendrecv_generic_node($1)
|
||||
corenet_udp_sendrecv_generic_node($1)
|
||||
corenet_tcp_sendrecv_kerberos_port($1)
|
||||
corenet_udp_sendrecv_kerberos_port($1)
|
||||
corenet_tcp_bind_all_nodes($1)
|
||||
corenet_udp_bind_all_nodes($1)
|
||||
corenet_tcp_bind_generic_node($1)
|
||||
corenet_udp_bind_generic_node($1)
|
||||
corenet_tcp_connect_kerberos_port($1)
|
||||
corenet_tcp_connect_ocsp_port($1)
|
||||
corenet_sendrecv_kerberos_client_packets($1)
|
||||
|
|
@ -283,7 +283,7 @@ interface(`kerberos_connect_524',`
|
|||
|
||||
corenet_all_recvfrom_unlabeled($1)
|
||||
corenet_udp_sendrecv_generic_if($1)
|
||||
corenet_udp_sendrecv_all_nodes($1)
|
||||
corenet_udp_sendrecv_generic_node($1)
|
||||
corenet_udp_sendrecv_kerberos_master_port($1)
|
||||
corenet_sendrecv_kerberos_master_client_packets($1)
|
||||
')
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(kerberos, 1.9.1)
|
||||
policy_module(kerberos, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -115,12 +115,12 @@ corenet_all_recvfrom_unlabeled(kadmind_t)
|
|||
corenet_all_recvfrom_netlabel(kadmind_t)
|
||||
corenet_tcp_sendrecv_generic_if(kadmind_t)
|
||||
corenet_udp_sendrecv_generic_if(kadmind_t)
|
||||
corenet_tcp_sendrecv_all_nodes(kadmind_t)
|
||||
corenet_udp_sendrecv_all_nodes(kadmind_t)
|
||||
corenet_tcp_sendrecv_generic_node(kadmind_t)
|
||||
corenet_udp_sendrecv_generic_node(kadmind_t)
|
||||
corenet_tcp_sendrecv_all_ports(kadmind_t)
|
||||
corenet_udp_sendrecv_all_ports(kadmind_t)
|
||||
corenet_tcp_bind_all_nodes(kadmind_t)
|
||||
corenet_udp_bind_all_nodes(kadmind_t)
|
||||
corenet_tcp_bind_generic_node(kadmind_t)
|
||||
corenet_udp_bind_generic_node(kadmind_t)
|
||||
corenet_tcp_bind_kerberos_admin_port(kadmind_t)
|
||||
corenet_udp_bind_kerberos_admin_port(kadmind_t)
|
||||
corenet_tcp_bind_reserved_port(kadmind_t)
|
||||
|
|
@ -217,12 +217,12 @@ corenet_all_recvfrom_unlabeled(krb5kdc_t)
|
|||
corenet_all_recvfrom_netlabel(krb5kdc_t)
|
||||
corenet_tcp_sendrecv_generic_if(krb5kdc_t)
|
||||
corenet_udp_sendrecv_generic_if(krb5kdc_t)
|
||||
corenet_tcp_sendrecv_all_nodes(krb5kdc_t)
|
||||
corenet_udp_sendrecv_all_nodes(krb5kdc_t)
|
||||
corenet_tcp_sendrecv_generic_node(krb5kdc_t)
|
||||
corenet_udp_sendrecv_generic_node(krb5kdc_t)
|
||||
corenet_tcp_sendrecv_all_ports(krb5kdc_t)
|
||||
corenet_udp_sendrecv_all_ports(krb5kdc_t)
|
||||
corenet_tcp_bind_all_nodes(krb5kdc_t)
|
||||
corenet_udp_bind_all_nodes(krb5kdc_t)
|
||||
corenet_tcp_bind_generic_node(krb5kdc_t)
|
||||
corenet_udp_bind_generic_node(krb5kdc_t)
|
||||
corenet_tcp_bind_kerberos_port(krb5kdc_t)
|
||||
corenet_udp_bind_kerberos_port(krb5kdc_t)
|
||||
corenet_tcp_connect_ocsp_port(krb5kdc_t)
|
||||
|
|
@ -287,9 +287,9 @@ corecmd_exec_bin(kpropd_t)
|
|||
|
||||
corenet_all_recvfrom_unlabeled(kpropd_t)
|
||||
corenet_tcp_sendrecv_generic_if(kpropd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(kpropd_t)
|
||||
corenet_tcp_sendrecv_generic_node(kpropd_t)
|
||||
corenet_tcp_sendrecv_all_ports(kpropd_t)
|
||||
corenet_tcp_bind_all_nodes(kpropd_t)
|
||||
corenet_tcp_bind_generic_node(kpropd_t)
|
||||
|
||||
dev_read_urand(kpropd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(kerneloops, 1.2.1)
|
||||
policy_module(kerneloops, 1.2.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -31,7 +31,7 @@ domain_use_interactive_fds(kerneloops_t)
|
|||
corenet_all_recvfrom_unlabeled(kerneloops_t)
|
||||
corenet_all_recvfrom_netlabel(kerneloops_t)
|
||||
corenet_tcp_sendrecv_generic_if(kerneloops_t)
|
||||
corenet_tcp_sendrecv_all_nodes(kerneloops_t)
|
||||
corenet_tcp_sendrecv_generic_node(kerneloops_t)
|
||||
corenet_tcp_sendrecv_all_ports(kerneloops_t)
|
||||
corenet_tcp_bind_http_port(kerneloops_t)
|
||||
corenet_tcp_connect_http_port(kerneloops_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ktalk, 1.6.1)
|
||||
policy_module(ktalk, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -57,8 +57,8 @@ corenet_all_recvfrom_unlabeled(ktalkd_t)
|
|||
corenet_all_recvfrom_netlabel(ktalkd_t)
|
||||
corenet_tcp_sendrecv_generic_if(ktalkd_t)
|
||||
corenet_udp_sendrecv_generic_if(ktalkd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(ktalkd_t)
|
||||
corenet_udp_sendrecv_all_nodes(ktalkd_t)
|
||||
corenet_tcp_sendrecv_generic_node(ktalkd_t)
|
||||
corenet_udp_sendrecv_generic_node(ktalkd_t)
|
||||
corenet_tcp_sendrecv_all_ports(ktalkd_t)
|
||||
corenet_udp_sendrecv_all_ports(ktalkd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(ldap, 1.9.1)
|
||||
policy_module(ldap, 1.9.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -83,11 +83,11 @@ corenet_all_recvfrom_unlabeled(slapd_t)
|
|||
corenet_all_recvfrom_netlabel(slapd_t)
|
||||
corenet_tcp_sendrecv_generic_if(slapd_t)
|
||||
corenet_udp_sendrecv_generic_if(slapd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(slapd_t)
|
||||
corenet_udp_sendrecv_all_nodes(slapd_t)
|
||||
corenet_tcp_sendrecv_generic_node(slapd_t)
|
||||
corenet_udp_sendrecv_generic_node(slapd_t)
|
||||
corenet_tcp_sendrecv_all_ports(slapd_t)
|
||||
corenet_udp_sendrecv_all_ports(slapd_t)
|
||||
corenet_tcp_bind_all_nodes(slapd_t)
|
||||
corenet_tcp_bind_generic_node(slapd_t)
|
||||
corenet_tcp_bind_ldap_port(slapd_t)
|
||||
corenet_tcp_connect_all_ports(slapd_t)
|
||||
corenet_sendrecv_ldap_server_packets(slapd_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(lpd, 1.11.1)
|
||||
policy_module(lpd, 1.11.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -90,8 +90,8 @@ corenet_all_recvfrom_unlabeled(checkpc_t)
|
|||
corenet_all_recvfrom_netlabel(checkpc_t)
|
||||
corenet_tcp_sendrecv_generic_if(checkpc_t)
|
||||
corenet_udp_sendrecv_generic_if(checkpc_t)
|
||||
corenet_tcp_sendrecv_all_nodes(checkpc_t)
|
||||
corenet_udp_sendrecv_all_nodes(checkpc_t)
|
||||
corenet_tcp_sendrecv_generic_node(checkpc_t)
|
||||
corenet_udp_sendrecv_generic_node(checkpc_t)
|
||||
corenet_tcp_sendrecv_all_ports(checkpc_t)
|
||||
corenet_udp_sendrecv_all_ports(checkpc_t)
|
||||
corenet_tcp_connect_all_ports(checkpc_t)
|
||||
|
|
@ -170,11 +170,11 @@ corenet_all_recvfrom_unlabeled(lpd_t)
|
|||
corenet_all_recvfrom_netlabel(lpd_t)
|
||||
corenet_tcp_sendrecv_generic_if(lpd_t)
|
||||
corenet_udp_sendrecv_generic_if(lpd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(lpd_t)
|
||||
corenet_udp_sendrecv_all_nodes(lpd_t)
|
||||
corenet_tcp_sendrecv_generic_node(lpd_t)
|
||||
corenet_udp_sendrecv_generic_node(lpd_t)
|
||||
corenet_tcp_sendrecv_all_ports(lpd_t)
|
||||
corenet_udp_sendrecv_all_ports(lpd_t)
|
||||
corenet_tcp_bind_all_nodes(lpd_t)
|
||||
corenet_tcp_bind_generic_node(lpd_t)
|
||||
corenet_tcp_bind_printer_port(lpd_t)
|
||||
corenet_sendrecv_printer_server_packets(lpd_t)
|
||||
|
||||
|
|
@ -245,8 +245,8 @@ corenet_all_recvfrom_unlabeled(lpr_t)
|
|||
corenet_all_recvfrom_netlabel(lpr_t)
|
||||
corenet_tcp_sendrecv_generic_if(lpr_t)
|
||||
corenet_udp_sendrecv_generic_if(lpr_t)
|
||||
corenet_tcp_sendrecv_all_nodes(lpr_t)
|
||||
corenet_udp_sendrecv_all_nodes(lpr_t)
|
||||
corenet_tcp_sendrecv_generic_node(lpr_t)
|
||||
corenet_udp_sendrecv_generic_node(lpr_t)
|
||||
corenet_tcp_sendrecv_all_ports(lpr_t)
|
||||
corenet_udp_sendrecv_all_ports(lpr_t)
|
||||
corenet_tcp_connect_all_ports(lpr_t)
|
||||
|
|
|
|||
|
|
@ -53,13 +53,13 @@ template(`mailman_domain_template', `
|
|||
corenet_tcp_sendrecv_generic_if(mailman_$1_t)
|
||||
corenet_udp_sendrecv_generic_if(mailman_$1_t)
|
||||
corenet_raw_sendrecv_generic_if(mailman_$1_t)
|
||||
corenet_tcp_sendrecv_all_nodes(mailman_$1_t)
|
||||
corenet_udp_sendrecv_all_nodes(mailman_$1_t)
|
||||
corenet_raw_sendrecv_all_nodes(mailman_$1_t)
|
||||
corenet_tcp_sendrecv_generic_node(mailman_$1_t)
|
||||
corenet_udp_sendrecv_generic_node(mailman_$1_t)
|
||||
corenet_raw_sendrecv_generic_node(mailman_$1_t)
|
||||
corenet_tcp_sendrecv_all_ports(mailman_$1_t)
|
||||
corenet_udp_sendrecv_all_ports(mailman_$1_t)
|
||||
corenet_tcp_bind_all_nodes(mailman_$1_t)
|
||||
corenet_udp_bind_all_nodes(mailman_$1_t)
|
||||
corenet_tcp_bind_generic_node(mailman_$1_t)
|
||||
corenet_udp_bind_generic_node(mailman_$1_t)
|
||||
corenet_tcp_connect_smtp_port(mailman_$1_t)
|
||||
corenet_sendrecv_smtp_client_packets(mailman_$1_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(mailman, 1.6.1)
|
||||
policy_module(mailman, 1.6.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(memcached, 1.0.1)
|
||||
policy_module(memcached, 1.0.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -28,13 +28,13 @@ allow memcached_t self:fifo_file rw_fifo_file_perms;
|
|||
|
||||
corenet_all_recvfrom_unlabeled(memcached_t)
|
||||
corenet_udp_sendrecv_generic_if(memcached_t)
|
||||
corenet_udp_sendrecv_all_nodes(memcached_t)
|
||||
corenet_udp_sendrecv_generic_node(memcached_t)
|
||||
corenet_udp_sendrecv_all_ports(memcached_t)
|
||||
corenet_udp_bind_all_nodes(memcached_t)
|
||||
corenet_udp_bind_generic_node(memcached_t)
|
||||
corenet_tcp_sendrecv_generic_if(memcached_t)
|
||||
corenet_tcp_sendrecv_all_nodes(memcached_t)
|
||||
corenet_tcp_sendrecv_generic_node(memcached_t)
|
||||
corenet_tcp_sendrecv_all_ports(memcached_t)
|
||||
corenet_tcp_bind_all_nodes(memcached_t)
|
||||
corenet_tcp_bind_generic_node(memcached_t)
|
||||
corenet_tcp_bind_memcache_port(memcached_t)
|
||||
corenet_udp_bind_memcache_port(memcached_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(monop, 1.6.0)
|
||||
policy_module(monop, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -47,11 +47,11 @@ corenet_all_recvfrom_unlabeled(monopd_t)
|
|||
corenet_all_recvfrom_netlabel(monopd_t)
|
||||
corenet_tcp_sendrecv_generic_if(monopd_t)
|
||||
corenet_udp_sendrecv_generic_if(monopd_t)
|
||||
corenet_tcp_sendrecv_all_nodes(monopd_t)
|
||||
corenet_udp_sendrecv_all_nodes(monopd_t)
|
||||
corenet_tcp_sendrecv_generic_node(monopd_t)
|
||||
corenet_udp_sendrecv_generic_node(monopd_t)
|
||||
corenet_tcp_sendrecv_all_ports(monopd_t)
|
||||
corenet_udp_sendrecv_all_ports(monopd_t)
|
||||
corenet_tcp_bind_all_nodes(monopd_t)
|
||||
corenet_tcp_bind_generic_node(monopd_t)
|
||||
corenet_tcp_bind_monopd_port(monopd_t)
|
||||
corenet_sendrecv_monopd_server_packets(monopd_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -74,7 +74,7 @@ template(`mta_base_mail_template',`
|
|||
corenet_all_recvfrom_unlabeled($1_mail_t)
|
||||
corenet_all_recvfrom_netlabel($1_mail_t)
|
||||
corenet_tcp_sendrecv_generic_if($1_mail_t)
|
||||
corenet_tcp_sendrecv_all_nodes($1_mail_t)
|
||||
corenet_tcp_sendrecv_generic_node($1_mail_t)
|
||||
corenet_tcp_sendrecv_all_ports($1_mail_t)
|
||||
corenet_tcp_connect_all_ports($1_mail_t)
|
||||
corenet_tcp_connect_smtp_port($1_mail_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(mta, 2.1.1)
|
||||
policy_module(mta, 2.1.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(munin, 1.6.0)
|
||||
policy_module(munin, 1.6.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -69,8 +69,8 @@ corenet_all_recvfrom_unlabeled(munin_t)
|
|||
corenet_all_recvfrom_netlabel(munin_t)
|
||||
corenet_tcp_sendrecv_generic_if(munin_t)
|
||||
corenet_udp_sendrecv_generic_if(munin_t)
|
||||
corenet_tcp_sendrecv_all_nodes(munin_t)
|
||||
corenet_udp_sendrecv_all_nodes(munin_t)
|
||||
corenet_tcp_sendrecv_generic_node(munin_t)
|
||||
corenet_udp_sendrecv_generic_node(munin_t)
|
||||
corenet_tcp_sendrecv_all_ports(munin_t)
|
||||
corenet_udp_sendrecv_all_ports(munin_t)
|
||||
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(mysql, 1.10.1)
|
||||
policy_module(mysql, 1.10.2)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -69,11 +69,11 @@ corenet_all_recvfrom_unlabeled(mysqld_t)
|
|||
corenet_all_recvfrom_netlabel(mysqld_t)
|
||||
corenet_tcp_sendrecv_generic_if(mysqld_t)
|
||||
corenet_udp_sendrecv_generic_if(mysqld_t)
|
||||
corenet_tcp_sendrecv_all_nodes(mysqld_t)
|
||||
corenet_udp_sendrecv_all_nodes(mysqld_t)
|
||||
corenet_tcp_sendrecv_generic_node(mysqld_t)
|
||||
corenet_udp_sendrecv_generic_node(mysqld_t)
|
||||
corenet_tcp_sendrecv_all_ports(mysqld_t)
|
||||
corenet_udp_sendrecv_all_ports(mysqld_t)
|
||||
corenet_tcp_bind_all_nodes(mysqld_t)
|
||||
corenet_tcp_bind_generic_node(mysqld_t)
|
||||
corenet_tcp_bind_mysqld_port(mysqld_t)
|
||||
corenet_tcp_connect_mysqld_port(mysqld_t)
|
||||
corenet_sendrecv_mysqld_client_packets(mysqld_t)
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
|
||||
policy_module(nagios, 1.7.0)
|
||||
policy_module(nagios, 1.7.1)
|
||||
|
||||
########################################
|
||||
#
|
||||
|
|
@ -70,8 +70,8 @@ corenet_all_recvfrom_unlabeled(nagios_t)
|
|||
corenet_all_recvfrom_netlabel(nagios_t)
|
||||
corenet_tcp_sendrecv_generic_if(nagios_t)
|
||||
corenet_udp_sendrecv_generic_if(nagios_t)
|
||||
corenet_tcp_sendrecv_all_nodes(nagios_t)
|
||||
corenet_udp_sendrecv_all_nodes(nagios_t)
|
||||
corenet_tcp_sendrecv_generic_node(nagios_t)
|
||||
corenet_udp_sendrecv_generic_node(nagios_t)
|
||||
corenet_tcp_sendrecv_all_ports(nagios_t)
|
||||
corenet_udp_sendrecv_all_ports(nagios_t)
|
||||
corenet_tcp_connect_all_ports(nagios_t)
|
||||
|
|
|
|||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue