Added search and getattr permissions to etc_mail_t dir for system_mail_t so that the sendmail process would be able to start through init

2005-10-26 18:31:09 +00:00 · 2005-10-26 18:31:09 +00:00 · f13da83f99
commit f13da83f99
parent d1b9d9228b
1 changed files with 1 additions and 0 deletions
--- a/refpolicy/policy/modules/services/mta.te
+++ b/refpolicy/policy/modules/services/mta.te
@ -50,6 +50,7 @@ allow system_mail_t self:capability { setuid setgid chown };
 allow system_mail_t self:process { signal_perms setrlimit };
 allow system_mail_t self:tcp_socket create_socket_perms;

+allow system_mail_t etc_mail_t:dir { getattr search };
 allow system_mail_t etc_mail_t:file r_file_perms;

 # re-exec itself