git://git.camperquake.de
/
selinux.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Add httpd-unix-sock
[selinux.git]
/
httpd-unix-sock
/
httpd-unix-sock.te
diff --git a/httpd-unix-sock/httpd-unix-sock.te
b/httpd-unix-sock/httpd-unix-sock.te
new file mode 100644
(file)
index 0000000..
ef11af9
--- /dev/null
+++ b/
httpd-unix-sock/httpd-unix-sock.te
@@ -0,0
+1,10
@@
+policy_module(httpd-unix-sock, 0.0.1)
+
+require {
+ type httpd_t;
+ type unconfined_service_t;
+}
+
+files_search_pids(httpd_t);
+files_write_generic_pid_pipes(httpd_t);
+allow httpd_t unconfined_service_t:unix_stream_socket { getattr connectto };