|
@@ -1,4 +1,4 @@
|
|
-policy_module(phpfpm_additional, 0.0.6)
|
|
|
|
|
|
+policy_module(phpfpm_additional, 0.0.7)
|
|
|
|
|
|
require {
|
|
require {
|
|
type phpfpm_t;
|
|
type phpfpm_t;
|
|
@@ -22,6 +22,8 @@ allow phpfpm_t phpfpm_tmp_t:lnk_file { create unlink };
|
|
miscfiles_read_all_certs(phpfpm_t)
|
|
miscfiles_read_all_certs(phpfpm_t)
|
|
miscfiles_read_fonts(phpfpm_t)
|
|
miscfiles_read_fonts(phpfpm_t)
|
|
|
|
|
|
|
|
+corecmd_exec_shell(phpfpm_t)
|
|
|
|
+
|
|
corenet_tcp_connect_pop_port(phpfpm_t)
|
|
corenet_tcp_connect_pop_port(phpfpm_t)
|
|
corenet_tcp_connect_http_port(phpfpm_t)
|
|
corenet_tcp_connect_http_port(phpfpm_t)
|
|
corenet_tcp_connect_sieve_port(phpfpm_t)
|
|
corenet_tcp_connect_sieve_port(phpfpm_t)
|