From 0632591996893fe136a1f2fe44d9b9f404f41f3e Mon Sep 17 00:00:00 2001 From: Harald Pfeiffer Date: Thu, 1 Nov 2018 13:30:58 +0100 Subject: Initial commit --- documentation/selinux/my-dbusdaemonlau.pp | Bin 0 -> 969 bytes documentation/selinux/my-dbusdaemonlau.te | 11 +++++++++++ documentation/selinux/my-iptables.pp | Bin 0 -> 945 bytes documentation/selinux/my-iptables.te | 11 +++++++++++ documentation/selinux/my-kdumpdepgener.pp | Bin 0 -> 942 bytes documentation/selinux/my-kdumpdepgener.te | 11 +++++++++++ documentation/selinux/my-pklacheckauth.pp | Bin 0 -> 961 bytes documentation/selinux/my-pklacheckauth.te | 11 +++++++++++ documentation/selinux/my-sssd.pp | Bin 0 -> 971 bytes documentation/selinux/my-sssd.te | 11 +++++++++++ documentation/selinux/my-unixchkpwd.pp | Bin 0 -> 966 bytes documentation/selinux/my-unixchkpwd.te | 11 +++++++++++ 12 files changed, 66 insertions(+) create mode 100644 documentation/selinux/my-dbusdaemonlau.pp create mode 100644 documentation/selinux/my-dbusdaemonlau.te create mode 100644 documentation/selinux/my-iptables.pp create mode 100644 documentation/selinux/my-iptables.te create mode 100644 documentation/selinux/my-kdumpdepgener.pp create mode 100644 documentation/selinux/my-kdumpdepgener.te create mode 100644 documentation/selinux/my-pklacheckauth.pp create mode 100644 documentation/selinux/my-pklacheckauth.te create mode 100644 documentation/selinux/my-sssd.pp create mode 100644 documentation/selinux/my-sssd.te create mode 100644 documentation/selinux/my-unixchkpwd.pp create mode 100644 documentation/selinux/my-unixchkpwd.te (limited to 'documentation/selinux') diff --git a/documentation/selinux/my-dbusdaemonlau.pp b/documentation/selinux/my-dbusdaemonlau.pp new file mode 100644 index 0000000..1fd321f Binary files /dev/null and b/documentation/selinux/my-dbusdaemonlau.pp differ diff --git a/documentation/selinux/my-dbusdaemonlau.te b/documentation/selinux/my-dbusdaemonlau.te new file mode 100644 index 0000000..a4112af --- /dev/null +++ b/documentation/selinux/my-dbusdaemonlau.te @@ -0,0 +1,11 @@ + +module my-dbusdaemonlau 1.0; + +require { + type system_dbusd_t; + type admin_home_t; + class file { map open }; +} + +#============= system_dbusd_t ============== +allow system_dbusd_t admin_home_t:file { map open }; diff --git a/documentation/selinux/my-iptables.pp b/documentation/selinux/my-iptables.pp new file mode 100644 index 0000000..3b4f469 Binary files /dev/null and b/documentation/selinux/my-iptables.pp differ diff --git a/documentation/selinux/my-iptables.te b/documentation/selinux/my-iptables.te new file mode 100644 index 0000000..849fb22 --- /dev/null +++ b/documentation/selinux/my-iptables.te @@ -0,0 +1,11 @@ + +module my-iptables 1.0; + +require { + type admin_home_t; + type iptables_t; + class file read; +} + +#============= iptables_t ============== +allow iptables_t admin_home_t:file read; diff --git a/documentation/selinux/my-kdumpdepgener.pp b/documentation/selinux/my-kdumpdepgener.pp new file mode 100644 index 0000000..6be9b5c Binary files /dev/null and b/documentation/selinux/my-kdumpdepgener.pp differ diff --git a/documentation/selinux/my-kdumpdepgener.te b/documentation/selinux/my-kdumpdepgener.te new file mode 100644 index 0000000..279be6e --- /dev/null +++ b/documentation/selinux/my-kdumpdepgener.te @@ -0,0 +1,11 @@ + +module my-kdumpdepgener 1.0; + +require { + type init_t; + type admin_home_t; + class file read; +} + +#============= init_t ============== +allow init_t admin_home_t:file read; diff --git a/documentation/selinux/my-pklacheckauth.pp b/documentation/selinux/my-pklacheckauth.pp new file mode 100644 index 0000000..f43f78d Binary files /dev/null and b/documentation/selinux/my-pklacheckauth.pp differ diff --git a/documentation/selinux/my-pklacheckauth.te b/documentation/selinux/my-pklacheckauth.te new file mode 100644 index 0000000..0b427de --- /dev/null +++ b/documentation/selinux/my-pklacheckauth.te @@ -0,0 +1,11 @@ + +module my-pklacheckauth 1.0; + +require { + type admin_home_t; + type policykit_auth_t; + class file map; +} + +#============= policykit_auth_t ============== +allow policykit_auth_t admin_home_t:file map; diff --git a/documentation/selinux/my-sssd.pp b/documentation/selinux/my-sssd.pp new file mode 100644 index 0000000..ef383f4 Binary files /dev/null and b/documentation/selinux/my-sssd.pp differ diff --git a/documentation/selinux/my-sssd.te b/documentation/selinux/my-sssd.te new file mode 100644 index 0000000..d733365 --- /dev/null +++ b/documentation/selinux/my-sssd.te @@ -0,0 +1,11 @@ + +module my-sssd 1.0; + +require { + type admin_home_t; + type sssd_t; + class file { getattr map open read }; +} + +#============= sssd_t ============== +allow sssd_t admin_home_t:file { getattr map open read }; diff --git a/documentation/selinux/my-unixchkpwd.pp b/documentation/selinux/my-unixchkpwd.pp new file mode 100644 index 0000000..85fff32 Binary files /dev/null and b/documentation/selinux/my-unixchkpwd.pp differ diff --git a/documentation/selinux/my-unixchkpwd.te b/documentation/selinux/my-unixchkpwd.te new file mode 100644 index 0000000..e0e3025 --- /dev/null +++ b/documentation/selinux/my-unixchkpwd.te @@ -0,0 +1,11 @@ + +module my-unixchkpwd 1.0; + +require { + type admin_home_t; + type chkpwd_t; + class file { map open read }; +} + +#============= chkpwd_t ============== +allow chkpwd_t admin_home_t:file { map open read }; -- cgit v1.2.3