81 lines
1.5 KiB
Text
81 lines
1.5 KiB
Text
## <summary>mlogc policy</summary>
|
|
## <desc>
|
|
## <p>
|
|
## More descriptive text about mlogc. The desc
|
|
## tag can also use p, ul, and ol
|
|
## html tags for formatting.
|
|
## </p>
|
|
## <p>
|
|
## This policy supports the following mlogc features:
|
|
## <ul>
|
|
## <li>Feature A</li>
|
|
## <li>Feature B</li>
|
|
## <li>Feature C</li>
|
|
## </ul>
|
|
## </p>
|
|
## </desc>
|
|
#
|
|
|
|
########################################
|
|
## <summary>
|
|
## Execute a domain transition to run mlogc.
|
|
## </summary>
|
|
## <param name="domain">
|
|
## <summary>
|
|
## Domain allowed to transition.
|
|
## </summary>
|
|
## </param>
|
|
#
|
|
interface(`mlogc_domtrans',`
|
|
gen_require(`
|
|
type mlogc_t, mlogc_exec_t;
|
|
type httpd_t, httpd_exec_t;
|
|
role system_r;
|
|
')
|
|
|
|
domain_type(mlogc_t)
|
|
domain_entry_file(mlogc_t, mlogc_exec_t)
|
|
|
|
role system_r types mlogc_t;
|
|
|
|
domtrans_pattern($1, mlogc_exec_t, mlogc_t)
|
|
#domtrans_pattern($1,mlogc_exec_t,mlogc_t)
|
|
')
|
|
|
|
########################################
|
|
## <summary>
|
|
## Read mlogc log files.
|
|
## </summary>
|
|
## <param name="domain">
|
|
## <summary>
|
|
## Domain allowed to read the log files.
|
|
## </summary>
|
|
## </param>
|
|
#
|
|
interface(`mlogc_read_log',`
|
|
gen_require(`
|
|
type mlogc_log_t;
|
|
')
|
|
|
|
logging_search_logs($1)
|
|
allow $1 mlogc_log_t:file read_file_perms;
|
|
')
|
|
|
|
########################################
|
|
## <summary>
|
|
## Write mlogc log files.
|
|
## </summary>
|
|
## <param name="domain">
|
|
## <summary>
|
|
## Domain allowed to write the log files.
|
|
## </summary>
|
|
## </param>
|
|
#
|
|
interface(`mlogc_write_log',`
|
|
gen_require(`
|
|
type mlogc_log_t;
|
|
')
|
|
|
|
allow $1 mlogc_log_t:file write;
|
|
')
|
|
|