rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity
d542026b86
selinux-policy/policy/modules/services/djbdns.te
Dominick Grift d542026b86 The capability IPC goes on top of the local policy. 
The capability IPC goes on top of the local policy.

The capability IPC goes on top of the local policy.

The capability IPC goes on top of the local policy.

The capability IPC goes on top of the local policy.
2010-09-22 15:41:45 +02:00

50 lines
1.2 KiB
Plaintext
Raw Blame History

policy_module(djbdns, 1.4.1)
########################################
#
# Declarations
#
type djbdns_axfrdns_t;
type djbdns_axfrdns_exec_t;
domain_type(djbdns_axfrdns_t)
domain_entry_file(djbdns_axfrdns_t, djbdns_axfrdns_exec_t)
role system_r types djbdns_axfrdns_t;
type djbdns_axfrdns_conf_t;
files_config_file(djbdns_axfrdns_conf_t)
djbdns_daemontools_domain_template(dnscache)
djbdns_daemontools_domain_template(tinydns)
########################################
#
# Local policy for axfrdns component
#
allow djbdns_axfrdns_t self:capability { setuid setgid sys_chroot };
daemontools_ipc_domain(djbdns_axfrdns_t)
daemontools_read_svc(djbdns_axfrdns_t)
allow djbdns_axfrdns_t djbdns_axfrdns_conf_t:dir list_dir_perms;
allow djbdns_axfrdns_t djbdns_axfrdns_conf_t:file read_file_perms;
allow djbdns_axfrdns_t djbdns_tinydns_t:dir list_dir_perms;
allow djbdns_axfrdns_t djbdns_tinydns_t:file read_file_perms;
allow djbdns_axfrdns_t djbdns_tinydns_conf_t:dir list_dir_perms;
allow djbdns_axfrdns_t djbdns_tinydns_conf_t:file read_file_perms;
files_search_var(djbdns_axfrdns_t)
ucspitcp_service_domain(djbdns_axfrdns_t, djbdns_axfrdns_exec_t)
########################################
#
# Local policy for tinydns
#
init_dontaudit_use_script_fds(djbdns_tinydns_t)
Reference in New Issue View Git Blame Copy Permalink