updates
This commit is contained in:
Chris PeBenito
parent
849380bd9a
commit
a01ab8ccb4
@ -692,7 +692,7 @@ dontaudit $1_t self:capability sys_tty_config;
|
||||
kernel_read_kernel_sysctl($1_t)
|
||||
kernel_read_hardware_state($1_t)
|
||||
devices_discard_data_stream($1_t)
|
||||
filesystem_get_all_filesystem_attributes($1_t)
|
||||
filesystem_get_all_filesystems_attributes($1_t)
|
||||
terminal_use_controlling_terminal($1_t)
|
||||
terminal_ignore_use_console($1_t)
|
||||
init_use_file_descriptors($1_t)
|
||||
@ -989,11 +989,14 @@ allow $1 $2:lnk_file { getattr read };
|
||||
#
|
||||
# system_domain():
|
||||
#
|
||||
type $1_t, domain, privlog $2;
|
||||
type $1_exec_t, file_type, sysadmfile, exec_type;
|
||||
type $1_t;
|
||||
domain_make_domain($1_t)
|
||||
role system_r types $1_t;
|
||||
type $1_exec_t;
|
||||
domain_make_entrypoint_file($1_t,$1_exec_t)
|
||||
libraries_use_dynamic_loader($1_t)
|
||||
libraries_read_shared_libraries($1_t)
|
||||
logging_send_system_log_message($1_t)
|
||||
allow $1_t etc_t:dir r_dir_perms;
|
||||
|
||||
#
|
||||
|
||||
Loading…
Reference in New Issue
Block a user