type dovecot_cert_t, dovecot_passwd_t, dovecot_initrc_exec_t;
')
- allow $1 dovecot_t:process { ptrace signal_perms };
+ allow $1 dovecot_t:process signal_perms;
ps_process_pattern($1, dovecot_t)
+ tunable_policy(`deny_ptrace',`',`
+ allow $1 dovecot_t:process ptrace;
+ ')
init_labeled_script_domtrans($1, dovecot_initrc_exec_t)
domain_system_change_exemption($1)