Secure shell client and server policy.
Read ssh server keys
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Do not audit attempts to read and write ssh server TCP sockets.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain to not audit. | No |
Read a ssh server unnamed pipe.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Send a SIGCHLD signal to the ssh server.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Connect to SSH daemons over TCP sockets.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
The per user domain template for the ssh module.
This template creates a derived domains which are used for ssh client sessions and user ssh agents. A derived type is also created to protect the user ssh keys.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
| Parameter: | Description: | Optional: |
|---|---|---|
| userdomain_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). | No |
| user_domain |
The type of the user domain. | No |
| user_role |
The role associated with the user domain. | No |
The template to define a ssh server.
This template creates a domains to be used for creating a ssh server. This is typically done to have multiple ssh servers of different sensitivities, such as for an internal network-facing ssh server, and a external network-facing ssh server.
| Parameter: | Description: | Optional: |
|---|---|---|
| userdomain_prefix |
The prefix of the server domain (e.g., sshd is the prefix for sshd_t). | No |