Logvinov Alecksey
94e96a604a
commit3d22bd9d3eMerge:bdbf5bd85c713cAuthor: Logvinov Alecksey <alecksey@yandex.ru> Date: Sun Jun 28 21:30:29 2020 +0300 Merge branch 'master' of https://gitea.alecksey.com/alecksey/globus-selinux-policy commitbdbf5bd850Author: Logvinov Alecksey <alecksey@yandex.ru> Date: Sun Jun 28 21:29:50 2020 +0300 'fix' commit85c713c9f4Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 21:20:15 2020 +0300 Изменить 'README.md' commit8d82709b23Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:37:02 2020 +0300 Изменить 'globus.te' commit7c3e06881fAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:31:33 2020 +0300 Изменить 'globus.te' commitd5ff7ea3a4Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:27:30 2020 +0300 Изменить 'globus.te' commit972aeff9d0Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:17:19 2020 +0300 Изменить 'globus.te' commit72edae112aAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:16:50 2020 +0300 Изменить 'globus.te' commit929101387fAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:07:39 2020 +0300 Изменить 'globus.te' commit8c743e94dcAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 20:05:35 2020 +0300 Изменить 'globus.te' commit120827c4b8Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 19:38:58 2020 +0300 Изменить 'README.md' commit17ee554bbdAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 19:32:59 2020 +0300 Загрузить файлы '' commit1ef7a213c0Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 18:24:53 2020 +0300 Добавить 'globus.te' commit0c2d5558a9Author: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 18:23:05 2020 +0300 Изменить 'README.md' commite44a60ba1aAuthor: Logvinov Alecksey <alecksey@noreply.example.org> Date: Sun Jun 28 18:22:55 2020 +0300 Изменить 'README.md'
37 lines
1.2 KiB
Plaintext
37 lines
1.2 KiB
Plaintext
|
|
module globus 1.0;
|
|
|
|
require {
|
|
type mysqld_port_t;
|
|
type user_home_t;
|
|
type tmp_t;
|
|
type init_t;
|
|
type httpd_t;
|
|
type httpd_config_t;
|
|
type smtp_port_t;
|
|
type http_port_t;
|
|
type public_content_rw_t;
|
|
type unreserved_port_t;
|
|
class tcp_socket name_connect;
|
|
class dir { add_name create rename reparent rmdir };
|
|
class file { append create execute execute_no_trans lock open read setattr unlink write };
|
|
}
|
|
|
|
#============= httpd_t =============
|
|
allow httpd_t http_port_t:tcp_socket name_connect;
|
|
allow httpd_t httpd_config_t:dir add_name;
|
|
allow httpd_t httpd_config_t:file {append create};
|
|
|
|
allow httpd_t smtp_port_t:tcp_socket name_connect;
|
|
|
|
allow httpd_t unreserved_port_t:tcp_socket name_connect;
|
|
|
|
#============= init_t ==============
|
|
|
|
allow init_t mysqld_port_t:tcp_socket name_connect;
|
|
allow init_t tmp_t:file unlink;
|
|
allow init_t user_home_t:dir { create rename reparent rmdir };
|
|
allow init_t user_home_t:file { append create execute execute_no_trans lock open read setattr unlink write };
|
|
allow init_t public_content_rw_t:file execute;
|
|
allow init_t public_content_rw_t:file { append create execute execute_no_trans lock open read setattr unlink write };
|