Snort network intrusion detection system.

######################################## ##

## Execute a domain transition to run snort. ##

## ##

## Domain allowed to transition. ##

## # interface(`snort_domtrans',` gen_require(` type snort_t, snort_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, snort_exec_t, snort_t) ') ######################################## ##

## All of the rules required to ## administrate an snort environment. ##

## ##

## Domain allowed access. ##

## ## ##

## Role allowed access. ##

## ## # interface(`snort_admin',` gen_require(` type snort_t, snort_var_run_t, snort_log_t; type snort_etc_t, snort_initrc_exec_t; ') allow $1 snort_t:process { ptrace signal_perms }; ps_process_pattern($1, snort_t) init_startstop_service($1, $2, snort_t, snort_initrc_exec_t) admin_pattern($1, snort_etc_t) files_search_etc($1) admin_pattern($1, snort_log_t) logging_search_logs($1) admin_pattern($1, snort_var_run_t) files_search_pids($1) ')