Policy for terminals.
This module is required to be included in all policies.
Create a pty in the /dev/pts directory.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process creating the pty. | No | 
| pty_type | The type of the pty. | No | 
Do not audit attempts to get the attributes of any user pty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Do not audit attempts to get the attributes of any user tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Do not audit attempts to get the attributes of the /dev/pts directory.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to get the attributes of all unallocated tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Do not audit attempts to read the /dev/pts directory.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to create, read, write, or delete the /dev/pts directory.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to read any user ptys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to read or write any user ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Do not audit attemtps to read from or write to the console.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Dot not audit attempts to read and write the generic pty type. This is generally only used in the targeted policy.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to read and write the pty multiplexor (/dev/ptmx).
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Do not audit attempts to read or write unallocated ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to not audit. | No | 
Get the attributes of all user pty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Get the attributes of all user tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Get the attributes of all unallocated tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
ioctl of generic pty types.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read the /dev/pts directory to list all ptys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Transform specified type into a pty type used by login programs, such as sshd.
| Parameter: | Description: | Optional: | 
|---|---|---|
| pty_type | An object type that will applied to a pty. | No | 
Transform specified type into a pty type.
| Parameter: | Description: | Optional: | 
|---|---|---|
| pty_type | An object type that will applied to a pty. | No | 
Relabel from and to all user user pty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Relabel from and to all user user tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Relabel from and to the unallocated tty type.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Relabel to all user ptys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Relabel from all user tty types to the unallocated tty type.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Search the contents of the /dev/pts directory.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Set the attributes of all user pty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Set the attributes of all user tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Set the attributes of the console device node.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Set the attributes of all unallocated tty device nodes.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Transform specified type into a tty type.
| Parameter: | Description: | Optional: | 
|---|---|---|
| tty_type | An object type that will applied to a tty. | No | 
Read and write the console, all ttys and all ptys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read and write all user ptys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read and write all user to all user ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read from and write to the console.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read and write the controlling terminal (/dev/tty).
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read and write the generic pty type. This is generally only used in the targeted policy.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Read and write the pty multiplexor (/dev/ptmx).
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | The type of the process to allow access. | No | 
Read and write unallocated ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Transform specified type into an user pty type. This allows it to be relabeled via type change by login programs such as ssh.
| Parameter: | Description: | Optional: | 
|---|---|---|
| userdomain | The type of the user domain associated with this pty. | No | 
| object_type | An object type that will applied to a pty. | No | 
Write to all user ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Write to the console.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No | 
Write to unallocated ttys.
| Parameter: | Description: | Optional: | 
|---|---|---|
| domain | Domain allowed access. | No |