psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

Blame publicfile.te

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f7 f8 f9 master master-docker master_contrib private-master-atomic-policy private-master-migrate-to-var-lib-selinux requires tests
  1.   7c9448b0b9a9250ed95dbc8a5c406b40ecb1bc34
  2.   publicfile.te
Blob History Raw
1ec3d1a 
policy_module(publicfile, 1.1.0)
1ec3d1a
1ec3d1a 
########################################
1ec3d1a 
#
1ec3d1a 
# Declarations
1ec3d1a 
#
1ec3d1a
1ec3d1a 
type publicfile_t;
1ec3d1a 
type publicfile_exec_t;
1ec3d1a 
init_daemon_domain(publicfile_t, publicfile_exec_t)
1ec3d1a
1ec3d1a 
type publicfile_content_t;
1ec3d1a 
files_type(publicfile_content_t)
1ec3d1a
1ec3d1a 
########################################
1ec3d1a 
#
1ec3d1a 
# Local policy
1ec3d1a 
#
1ec3d1a
1ec3d1a 
allow publicfile_t self:capability { dac_override setgid setuid sys_chroot };
1ec3d1a 
allow publicfile_t publicfile_content_t:dir list_dir_perms;
1ec3d1a 
allow publicfile_t publicfile_content_t:file read_file_perms;
1ec3d1a
1ec3d1a 
files_search_var(publicfile_t)
1ec3d1a
1ec3d1a 
optional_policy(`
1ec3d1a 
	daemontools_ipc_domain(publicfile_t)
1ec3d1a 
')
1ec3d1a
1ec3d1a 
optional_policy(`
1ec3d1a 
	ucspitcp_service_domain(publicfile_t, publicfile_exec_t)
1ec3d1a 
')
1ec3d1a
1ec3d1a 
#allow publicfile_t initrc_t:tcp_socket { read write };
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.