Layer: services

Module: mta

Description:

Policy common to all email tranfer agents.

Interfaces:

mta_append_spool(
	
		domain
		
	)

Summary

Create, read, and write the mail spool.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_delete_spool(
	
		domain
		
	)

Summary

Delete from the mail spool.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_dontaudit_getattr_spool_files(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_dontaudit_read_spool_symlinks(
	
		domain
		
	)

Summary

Do not audit attempts to read a symlink in the mail spool.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_dontaudit_rw_delivery_tcp_sockets(
	
		domain
		
	)

Summary

Do not audit attempts to read and write TCP sockets of mail delivery domains.

Parameters

Parameter:	Description:	Optional:
domain	Mail server domain.	No

mta_dontaudit_rw_queue(
	
		domain
		
	)

Summary

Do not audit attempts to read and write the mail queue.

Parameters

Parameter:	Description:	Optional:
domain	Domain to not audit.	No

mta_etc_filetrans_aliases(
	
		domain
		
	)

Summary

Type transition files created in /etc to the mail address aliases type.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_exec(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_getattr_spool(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_mailserver(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_mailserver_delivery(
	
		domain
		
	)

Summary

Make a type a mailserver type used for delivering mail to local users.

Parameters

Parameter:	Description:	Optional:
domain	Mail server domain type used for delivering mail.	No

mta_mailserver_sender(
	
		domain
		
	)

Summary

Make a type a mailserver type used for sending mail.

Parameters

Parameter:	Description:	Optional:
domain	Mail server domain type used for sending mail.	No

mta_mailserver_user_agent(
	
		domain
		
	)

Summary

Make a type a mailserver type used for sending mail on behalf of local users to the local mail spool.

Parameters

Parameter:	Description:	Optional:
domain	Mail server domain type used for sending local mail.	No

mta_manage_queue(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_manage_spool(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_read_aliases(
	
		domain
		
	)

Summary

Read mail address aliases.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_read_config(
	
		domain
		
	)

Summary

Read mail server configuration.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_read_sendmail_bin(
	
		domain
		
	)

Summary

Read sendmail binary.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_rw_aliases(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_rw_spool(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_rw_user_mail_stream_sockets(
	
		domain
		
	)

Summary

Read and write unix domain stream sockets of user mail domains.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

mta_send_mail(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:	Optional:
?	Parameter descriptions are missing!	No

mta_sendmail_mailserver(
	
		domain
		
			,
		
		entry_point
		
	)

Summary

Modified mailserver interface for sendmail daemon use.

Description

A modified MTA mail server interface for the sendmail program. It's design does not fit well with policy, and using the regular interface causes a type_transition conflict if direct running of init scripts is enabled.

This interface should most likely only be used by the sendmail policy.

Parameters

Parameter:	Description:	Optional:
domain	The type to be used for the mail server.	No
entry_point	The type to be used for the domain entry point program.	No

mta_spool_filetrans(
	
		domain
		
			,
		
		private type
		
			,
		
		object
		
	)

Summary

Create private objects in the mail spool directory.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No
private type	The type of the object to be created.	No
object	The object class of the object being created.	No

mta_stub(
	
		domain
		
	)

Summary

MTA stub interface. No access allowed.

Parameters

Parameter:	Description:	Optional:
domain	N/A	Yes

mta_tcp_connect_all_mailservers(
	
		domain
		
	)

Summary

Connect to all mail servers over TCP.

Parameters

Parameter:	Description:	Optional:
domain	Mail server domain.	No

Return

Templates:

mta_admin_template(
	
		userdomain_prefix
		
			,
		
		user_domain
		
	)

Summary

Provide extra permissions for admin users mail domain.

Parameters

Parameter:	Description:	Optional:
userdomain_prefix	The prefix of the user domain (e.g., user is the prefix for user_t).	No
user_domain	The type of the user domain.	No

mta_base_mail_template(
	
		domain_prefix
		
	)

Summary

Basic mail transfer agent domain template.

Description

This template creates a derived domain which is a email transfer agent, which sends mail on behalf of the user.

This is the basic types and rules, common to the system agent and user agents.

Parameters

Parameter:	Description:	Optional:
domain_prefix	The prefix of the domain (e.g., user is the prefix for user_t).	No

mta_per_userdomain_template(
	
		userdomain_prefix
		
			,
		
		user_domain
		
			,
		
		user_role
		
	)

Summary

The per user domain template for the mta module.

Description

This template creates a derived domain which is a email transfer agent, which sends mail on behalf of the user.

This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.

Parameters

Parameter:	Description:	Optional:
userdomain_prefix	The prefix of the user domain (e.g., user is the prefix for user_t).	No
user_domain	The type of the user domain.	No
user_role	The role associated with the user domain.	No

Return