Skip to content

Commit

Permalink
Label /var/lib/softhsm as named_cache_t. Allow named_t to manage name…
Browse files Browse the repository at this point in the history 
…d_cache_t dirs.
  • Loading branch information
@wrabcak
wrabcak committed Jun 27, 2016
1 parent 91c80b9 commit 870fd95
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 0 deletions.
1 change: 1 addition & 0 deletions bind.fc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,7 @@ ifdef(`distro_redhat',`
/etc/named\.root\.hints -- gen_context(system_u:object_r:named_conf_t,s0)
/etc/named\.conf -- gen_context(system_u:object_r:named_conf_t,s0)
/etc/named\.caching-nameserver\.conf -- gen_context(system_u:object_r:named_conf_t,s0)
/var/lib/softhsm(/.*)? gen_context(system_u:object_r:named_cache_t,s0)
/var/lib/unbound(/.*)? gen_context(system_u:object_r:named_cache_t,s0)
/var/named(/.*)? gen_context(system_u:object_r:named_zone_t,s0)
/var/named/slaves(/.*)? gen_context(system_u:object_r:named_cache_t,s0)
Expand Down
1 change: 1 addition & 0 deletions bind.te
View file
Original file line number Diff line number Diff line change
Expand Up @@ -88,6 +88,7 @@ allow named_t named_conf_t:dir list_dir_perms;
read_files_pattern(named_t, named_conf_t, named_conf_t)
read_lnk_files_pattern(named_t, named_conf_t, named_conf_t)

manage_dirs_pattern(named_t, named_cache_t, named_cache_t)
manage_files_pattern(named_t, named_cache_t, named_cache_t)
manage_lnk_files_pattern(named_t, named_cache_t, named_cache_t)

Expand Down

0 comments on commit 870fd95

Please sign in to comment.