selinux-policy/policy/modules/system/application.te
2010-08-26 09:41:21 -04:00

33 lines
843 B
Plaintext

policy_module(application, 1.2.0)
# Attribute of user applications
attribute application_domain_type;
# Executables to be run by user
attribute application_exec_type;
userdom_inherit_append_user_home_content_files(application_domain_type)
userdom_inherit_append_admin_home_files(application_domain_type)
userdom_inherit_append_user_tmp_files(application_domain_type)
logging_inherit_append_all_logs(application_domain_type)
files_dontaudit_search_all_dirs(application_domain_type)
optional_policy(`
afs_rw_udp_sockets(application_domain_type)
')
optional_policy(`
cron_rw_inherited_user_spool_files(application_domain_type)
cron_sigchld(application_domain_type)
')
optional_policy(`
ssh_sigchld(application_domain_type)
ssh_rw_stream_sockets(application_domain_type)
')
optional_policy(`
sudo_sigchld(application_domain_type)
')