Linux-Help/selinux-kolab
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Refactored a lot of code to utilize appropriate interfaces

Browse source
This commit is contained in:
Eric Renfro 2015-11-14 00:52:13 -05:00
parent 46d21f7099
commit 9573efec7b
1 changed files with 12 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
kolab-local.te
View file

@ -1,26 +1,26 @@
module kolab-local 1.0.5; module kolab-local 1.0.20;
require { require {
type cyrus_t; type cyrus_t;
type spamc_exec_t; type spamc_exec_t;
type spamd_var_lib_t;
type etc_mail_t;
type var_log_t; type var_log_t;
type init_t;
type postfix_master_t; type postfix_master_t;
class file { read write append open execute execute_no_trans getattr ioctl }; class file { read write append open execute execute_no_trans getattr ioctl lock execute_no_trans entrypoint };
class dir { search }; class lnk_file { getattr read };
class dir { getattr search open read lock ioctl };
class sock_file { getattr open read write append };
class unix_stream_socket { connectto };
} }
#============= cyrus_t ============== domain_entry_file(cyrus_t, spamc_exec_t);
allow cyrus_t init_t:file { read open };
allow cyrus_t etc_mail_t:dir search;
allow cyrus_t spamc_exec_t:file { read open execute execute_no_trans getattr ioctl };
allow cyrus_t spamd_var_lib_t:dir search;
#============= cyrus_t ==============
mta_read_config(cyrus_t);
spamassassin_read_lib_files(cyrus_t);
mysql_stream_connect(cyrus_t);
#============= postfix_master_t ============== #============= postfix_master_t ==============
#allow postfix_master_t var_log_t:file { append open };
allow postfix_master_t var_log_t:file { write open }; allow postfix_master_t var_log_t:file { write open };