selinux-refpolicy/policy/modules/admin/amtu.te

40 lines
659 B
Plaintext
Raw Normal View History

policy_module(amtu, 1.4.0)
########################################
#
# Declarations
#
attribute_role amtu_roles;
type amtu_t;
type amtu_exec_t;
init_system_domain(amtu_t, amtu_exec_t)
role amtu_roles types amtu_t;
type amtu_initrc_exec_t;
init_script_file(amtu_initrc_exec_t)
########################################
#
# Local policy
#
kernel_read_system_state(amtu_t)
files_manage_boot_files(amtu_t)
files_read_etc_runtime_files(amtu_t)
files_read_etc_files(amtu_t)
logging_send_audit_msgs(amtu_t)
userdom_use_user_terminals(amtu_t)
optional_policy(`
nscd_dontaudit_search_runtime(amtu_t)
')
optional_policy(`
seutil_use_newrole_fds(amtu_t)
')