network_port(matahari, tcp,49000,s0, udp,49000,s0)
network_port(memcache, tcp,11211,s0, udp,11211,s0)
network_port(mmcc, tcp,5050,s0, udp,5050,s0)
+network_port(mongod, tcp,27017,s0)
network_port(monopd, tcp,1234,s0)
network_port(movaz_ssc, tcp,5252,s0)
network_port(mpd, tcp,6600,s0)
type $1_t, cloudform_domain;
type $1_exec_t;
init_daemon_domain($1_t, $1_exec_t)
+')
+
+######################################
+## <summary>
+## Execute mongod in the caller domain.
+## </summary>
+## <param name="domain">
+## <summary>
+## Domain allowed access.
+## </summary>
+## </param>
+#
+template(`cloudform_exec_mongod',`
+ gen_require(`
+ type mogod_exec_t;
+ ')
+ can_exec($1, mogod_exec_t)
')
files_pid_filetrans(mongod_t, mongod_var_run_t, { file })
corenet_tcp_bind_generic_node(mongod_t)
-corenet_tcp_bind_generic_port(mongod_t)
+corenet_tcp_bind_mongod_port(mongod_t)
files_read_usr_files(mongod_t)
projects / people / stevee / selinux-policy.git / commitdiff
