24 lines
401 B
Plaintext
24 lines
401 B
Plaintext
policy_module(logadm)
|
|
|
|
########################################
|
|
#
|
|
# Declarations
|
|
#
|
|
|
|
role logadm_r;
|
|
|
|
userdom_base_user_template(logadm)
|
|
|
|
########################################
|
|
#
|
|
# logadmin local policy
|
|
#
|
|
|
|
allow logadm_t self:capability { dac_override dac_read_search kill sys_nice sys_ptrace };
|
|
|
|
logging_admin(logadm_t, logadm_r)
|
|
|
|
optional_policy(`
|
|
dbus_role_template(logadm, logadm_r, logadm_t)
|
|
')
|