Bugtracker.

######################################## ##

## Search bugzilla directories. ##

## ##

## Domain allowed access. ##

## # interface(`bugzilla_search_content',` gen_require(` type httpd_bugzilla_content_t; ') allow $1 httpd_bugzilla_content_t:dir search_dir_perms; ') ######################################## ##

## Do not audit attempts to read and ## write bugzilla script unix domain ## stream sockets. ##

## ##

## Domain to not audit. ##

## # interface(`bugzilla_dontaudit_rw_stream_sockets',` gen_require(` type httpd_bugzilla_script_t; ') dontaudit $1 httpd_bugzilla_script_t:unix_stream_socket { read write }; ') ######################################## ##

## All of the rules required to ## administrate an bugzilla environment. ##

## ##

## Domain allowed access. ##

## # interface(`bugzilla_admin',` gen_require(` type httpd_bugzilla_script_t, httpd_bugzilla_content_t, httpd_bugzilla_ra_content_t; type httpd_bugzilla_rw_content_t, httpd_bugzilla_script_exec_t; type httpd_bugzilla_htaccess_t, httpd_bugzilla_tmp_t; ') allow $1 httpd_bugzilla_script_t:process signal_perms; ps_process_pattern($1, httpd_bugzilla_script_t) tunable_policy(`deny_ptrace',`',` allow $1 httpd_bugzilla_script_t:process ptrace; ') files_list_tmp($1) admin_pattern($1, httpd_bugzilla_tmp_t) files_list_var_lib(httpd_bugzilla_script_t) admin_pattern($1, httpd_bugzilla_script_exec_t) admin_pattern($1, httpd_bugzilla_script_t) admin_pattern($1, httpd_bugzilla_content_t) admin_pattern($1, httpd_bugzilla_htaccess_t) admin_pattern($1, httpd_bugzilla_ra_content_t) files_search_tmp($1) files_search_var_lib($1) admin_pattern($1, httpd_bugzilla_rw_content_t) optional_policy(` apache_list_sys_content($1) ') ')