d387e79989
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
40 lines
659 B
Plaintext
40 lines
659 B
Plaintext
policy_module(amtu, 1.5.0)
|
|
|
|
########################################
|
|
#
|
|
# Declarations
|
|
#
|
|
|
|
attribute_role amtu_roles;
|
|
|
|
type amtu_t;
|
|
type amtu_exec_t;
|
|
init_system_domain(amtu_t, amtu_exec_t)
|
|
role amtu_roles types amtu_t;
|
|
|
|
type amtu_initrc_exec_t;
|
|
init_script_file(amtu_initrc_exec_t)
|
|
|
|
########################################
|
|
#
|
|
# Local policy
|
|
#
|
|
|
|
kernel_read_system_state(amtu_t)
|
|
|
|
files_manage_boot_files(amtu_t)
|
|
files_read_etc_runtime_files(amtu_t)
|
|
files_read_etc_files(amtu_t)
|
|
|
|
logging_send_audit_msgs(amtu_t)
|
|
|
|
userdom_use_user_terminals(amtu_t)
|
|
|
|
optional_policy(`
|
|
nscd_dontaudit_search_runtime(amtu_t)
|
|
')
|
|
|
|
optional_policy(`
|
|
seutil_use_newrole_fds(amtu_t)
|
|
')
|