e5b1b197c7
the rules updating script; this achieved by employing two distinct domains for increased security and network isolation: a first domain is used for fetching the updated rules from the network and second domain is used for verifying the GPG signatures of the received rules. The rules update feature is now controlled by a boolean for increased flexibility (it overrides the generic networking boolean). The specific file type for the spamassassin update feature temporary files has been removed: just use spamd_tmp_t instead of spamd_update_tmp_t and add a corresponding alias. Signed-off-by: Guido Trentalancia <guido@trentalancia.com> --- policy/modules/services/spamassassin.if | 11 ++- policy/modules/services/spamassassin.te | 100 +++++++++++++++++++++++++------- 2 files changed, 86 insertions(+), 25 deletions(-) |
||
|---|---|---|
| .. | ||
| admin | ||
| apps | ||
| kernel | ||
| roles | ||
| services | ||
| system | ||