1 policy_module(nslcd, 1.2.0)
3 ########################################
10 init_daemon_domain(nslcd_t, nslcd_exec_t)
12 type nslcd_initrc_exec_t;
13 init_script_file(nslcd_initrc_exec_t)
16 files_pid_file(nslcd_var_run_t)
19 files_config_file(nslcd_conf_t)
21 ########################################
26 allow nslcd_t self:capability { setgid setuid dac_override };
27 allow nslcd_t self:process { setsched signal };
28 allow nslcd_t self:unix_stream_socket create_stream_socket_perms;
30 allow nslcd_t nslcd_conf_t:file read_file_perms;
32 manage_dirs_pattern(nslcd_t, nslcd_var_run_t, nslcd_var_run_t)
33 manage_files_pattern(nslcd_t, nslcd_var_run_t, nslcd_var_run_t)
34 manage_sock_files_pattern(nslcd_t, nslcd_var_run_t, nslcd_var_run_t)
35 files_pid_filetrans(nslcd_t, nslcd_var_run_t, { file dir })
37 kernel_read_system_state(nslcd_t)
39 files_read_etc_files(nslcd_t)
40 files_read_usr_symlinks(nslcd_t)
41 files_list_tmp(nslcd_t)
43 auth_use_nsswitch(nslcd_t)
45 logging_send_syslog_msg(nslcd_t)
47 miscfiles_read_localization(nslcd_t)
49 userdom_read_user_tmp_files(nslcd_t)