20 lines
380 B
Plaintext
20 lines
380 B
Plaintext
policy_module(su)
|
|
|
|
## <desc>
|
|
## <p>
|
|
## Determine whether the user application
|
|
## exec domain attribute should be respected
|
|
## for su access. If not enabled, only user
|
|
## domains themselves may use su.
|
|
## </p>
|
|
## </desc>
|
|
gen_tunable(su_allow_user_exec_domains, false)
|
|
|
|
########################################
|
|
#
|
|
# Declarations
|
|
#
|
|
|
|
type su_exec_t;
|
|
corecmd_executable_file(su_exec_t)
|