psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

Blame ulogd.te

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f7 f8 f9 master master-docker master_contrib private-master-atomic-policy private-master-migrate-to-var-lib-selinux requires tests
  1.   3f229b0f2cbf7174a1db0dfb3cc5aa49887a21d2
  2.   ulogd.te
Blob History Raw
Chris PeBenito 9401ae1 
policy_module(ulogd, 1.2.0)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
########################################
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1 
# Declarations
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
type ulogd_t;
Chris PeBenito 9401ae1 
type ulogd_exec_t;
Chris PeBenito 9401ae1 
init_daemon_domain(ulogd_t, ulogd_exec_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# config files
Chris PeBenito 9401ae1 
type ulogd_etc_t;
Chris PeBenito 9401ae1 
files_type(ulogd_etc_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
type ulogd_initrc_exec_t;
Chris PeBenito 9401ae1 
init_script_file(ulogd_initrc_exec_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# /usr/lib files
Chris PeBenito 9401ae1 
type ulogd_modules_t;
Chris PeBenito 9401ae1 
files_type(ulogd_modules_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# log files
Chris PeBenito 9401ae1 
type ulogd_var_log_t;
Chris PeBenito 9401ae1 
logging_log_file(ulogd_var_log_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
########################################
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1 
# ulogd local policy
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
allow ulogd_t self:capability net_admin;
Chris PeBenito 9401ae1 
allow ulogd_t self:netlink_nflog_socket create_socket_perms;
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# config files
Chris PeBenito 9401ae1 
read_files_pattern(ulogd_t, ulogd_etc_t, ulogd_etc_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# modules for ulogd
Chris PeBenito 9401ae1 
list_dirs_pattern(ulogd_t, ulogd_modules_t, ulogd_modules_t)
Chris PeBenito 9401ae1 
mmap_files_pattern(ulogd_t, ulogd_modules_t, ulogd_modules_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
# log files
Chris PeBenito 9401ae1 
manage_files_pattern(ulogd_t, ulogd_var_log_t, ulogd_var_log_t)
Chris PeBenito 9401ae1 
logging_log_filetrans(ulogd_t, ulogd_var_log_t, file)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
files_read_etc_files(ulogd_t)
Chris PeBenito 9401ae1 
files_read_usr_files(ulogd_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
miscfiles_read_localization(ulogd_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	allow ulogd_t self:tcp_socket create_stream_socket_perms;
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
	mysql_stream_connect(ulogd_t)
Chris PeBenito 9401ae1 
	mysql_tcp_connect(ulogd_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
	sysnet_dns_name_resolve(ulogd_t)
Chris PeBenito 9401ae1 
')
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	allow ulogd_t self:tcp_socket create_stream_socket_perms;
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
	postgresql_stream_connect(ulogd_t)
Chris PeBenito 9401ae1 
	postgresql_tcp_connect(ulogd_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
	sysnet_dns_name_resolve(ulogd_t)
Chris PeBenito 9401ae1 
')
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.