selinux-refpolicy/policy/modules/admin/sudo.te
Chris PeBenito bc746ff391 sudo, spamassassin: Module version bump.
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2021-01-28 15:27:03 -05:00

25 lines
546 B
Plaintext

policy_module(sudo, 1.15.1)
## <desc>
## <p>
## Determine whether all sudo domains
## can connect to TCP HTTP ports. This
## is needed if an additional authentication
## mechanism via an HTTP server is
## required for users to use sudo.
## </p>
## </desc>
gen_tunable(sudo_all_tcp_connect_http_port, false)
########################################
#
# Declarations
attribute sudodomain;
type sudo_exec_t;
application_executable_file(sudo_exec_t)
tunable_policy(`sudo_all_tcp_connect_http_port',`
corenet_tcp_connect_http_port(sudodomain)
')