| 123456789101112131415161718192021222324252627282930313233343536373839404142434445 |
- policy_module(ttrss, 0.0.3)
- ########################################
- #
- # Declarations
- #
- attribute_role ttrss_roles;
- type ttrss_t;
- type ttrss_exec_t;
- init_system_domain(ttrss_t, ttrss_exec_t)
- ########################################
- #
- # Local policy
- #
- allow ttrss_t self:netlink_route_socket { bind create getattr nlmsg_read read write };
- allow ttrss_t self:tcp_socket { connect create getattr getopt read setopt write };
- allow ttrss_t self:udp_socket { connect create getattr read write };
- allow ttrss_t self:unix_stream_socket { connect create read write };
- corenet_tcp_connect_generic_port(ttrss_t)
- corenet_tcp_connect_http_port(ttrss_t)
- files_read_etc_files(ttrss_t)
- miscfiles_read_generic_certs(ttrss_t)
- apache_manage_sys_content(ttrss_t)
- corecmd_check_exec_shell(ttrss_t)
- corecmd_exec_bin(ttrss_t)
- sysnet_read_config(ttrss_t)
- miscfiles_read_localization(ttrss_t)
- mysql_tcp_connect(ttrss_t)
- mysql_stream_connect(ttrss_t)
- optional_policy(`
- cron_system_entry(ttrss_t, ttrss_exec_t)
- ')
|
