## ossec policy
##
##
## More descriptive text about ossec. The desc
## tag can also use p, ul, and ol
## html tags for formatting.
##
##
## This policy supports the following ossec features:
##
## - Feature A
## - Feature B
## - Feature C
##
##
##
#
########################################
##
## Execute a domain transition to run ossec.
##
##
##
## Domain allowed to transition.
##
##
#
interface(`ossec_domtrans',`
gen_require(`
type ossec_t, ossec_exec_t;
type httpd_t, httpd_exec_t;
role system_r;
')
domain_type(ossec_t)
domain_entry_file(ossec_t, ossec_exec_t)
role system_r types ossec_t;
domtrans_pattern($1, ossec_exec_t, ossec_t)
#domtrans_pattern($1,ossec_exec_t,ossec_t)
')
########################################
##
## Read ossec log files.
##
##
##
## Domain allowed to read the log files.
##
##
#
interface(`ossec_read_log',`
gen_require(`
type ossec_log_t;
')
logging_search_logs($1)
allow $1 ossec_log_t:file read_file_perms;
')
########################################
##
## Write ossec log files.
##
##
##
## Domain allowed to write the log files.
##
##
#
interface(`ossec_write_log',`
gen_require(`
type ossec_log_t;
')
allow $1 ossec_log_t:file write;
')