RepoMirrors/selinux-refpolicy
1
0
Fork 0
mirror of https://github.com/SELinuxProject/refpolicy synced 2025-03-11 07:40:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

postfix: add filetrans for sendmail and postfix for aliases db operations

Browse Source 
Signed-off-by: bauen1 <j2468h@gmail.com>
This commit is contained in:
bauen1 2020-04-13 13:58:11 +02:00
parent 309f655fdc
commit a9ff07d886
No known key found for this signature in database
GPG Key ID: FF0AAF5E0812BA9C
2 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
policy/modules/services/postfix.te
View File

@ -310,6 +310,7 @@ seutil_dontaudit_search_config(postfix_master_t)
mta_manage_aliases(postfix_master_t)
mta_etc_filetrans_aliases(postfix_master_t, file, "aliases")
mta_etc_filetrans_aliases(postfix_master_t, file, "aliases.db")
mta_etc_filetrans_aliases(postfix_master_t, file, "__db.aliases.db")
mta_etc_filetrans_aliases(postfix_master_t, file, "aliasesdb-stamp")
mta_spec_filetrans_aliases(postfix_master_t, postfix_etc_t, file)
mta_read_sendmail_bin(postfix_master_t)

2
policy/modules/services/sendmail.te
View File

@ -118,6 +118,7 @@ userdom_dontaudit_use_unpriv_user_fds(sendmail_t)
mta_etc_filetrans_aliases(sendmail_t, file, "aliases")
mta_etc_filetrans_aliases(sendmail_t, file, "aliases.db")
mta_etc_filetrans_aliases(sendmail_t, file, "__db.aliases.db")
mta_etc_filetrans_aliases(sendmail_t, file, "aliasesdb-stamp")
mta_manage_aliases(sendmail_t)
mta_manage_queue(sendmail_t)
@ -208,6 +209,7 @@ optional_policy(`
optional_policy(`
mta_etc_filetrans_aliases(unconfined_sendmail_t, file, "aliases")
mta_etc_filetrans_aliases(unconfined_sendmail_t, file, "aliases.db")
mta_etc_filetrans_aliases(unconfined_sendmail_t, file, "__db.aliases.db")
mta_etc_filetrans_aliases(unconfined_sendmail_t, file, "aliasesdb-stamp")
unconfined_domain(unconfined_sendmail_t)
')