manage_files_pattern(httpd_t, httpd_squirrelmail_t, httpd_squirrelmail_t)
manage_lnk_files_pattern(httpd_t, httpd_squirrelmail_t, httpd_squirrelmail_t)
-allow httpd_t httpd_suexec_exec_t:file { getattr read };
+allow httpd_t httpd_suexec_exec_t:file read_file_perms;
allow httpd_t httpd_sys_content_t:dir list_dir_perms;
read_files_pattern(httpd_t, httpd_sys_content_t, httpd_sys_content_t)
domtrans_pattern(httpd_t, httpd_helper_exec_t, httpd_helper_t)
-allow httpd_helper_t httpd_config_t:file { getattr read };
+allow httpd_helper_t httpd_config_t:file read_file_perms;
-allow httpd_helper_t httpd_log_t:file append;
+allow httpd_helper_t httpd_log_t:file append_file_perms;
libs_use_ld_so(httpd_helper_t)
libs_use_shared_libs(httpd_helper_t)
dontaudit httpd_sys_script_t httpd_config_t:dir search;
-allow httpd_sys_script_t httpd_squirrelmail_t:file { append read };
+allow httpd_sys_script_t httpd_squirrelmail_t:file { append_file_perms read_file_perms };
allow httpd_sys_script_t squirrelmail_spool_t:dir list_dir_perms;
read_files_pattern(httpd_sys_script_t, squirrelmail_spool_t, squirrelmail_spool_t)
apache_domtrans_rotatelogs(httpd_sys_script_t)
ifdef(`distro_redhat',`
- allow httpd_sys_script_t httpd_log_t:file { getattr append };
+ allow httpd_sys_script_t httpd_log_t:file append_file_perms;
')
tunable_policy(`httpd_enable_homedirs',`
projects / people / stevee / selinux-policy.git / blobdiff