fws
/
zabbix
4
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix SELinux policy for proxy

Browse Source
tags/zabbix-3.4.4-4
Daniel Berteaud 7 years ago
parent fe8b17a1c5
commit e0e3e67f2b
1 changed files with 6 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 7
      zabbix-proxy.te

7
zabbix-proxy.te
Unescape View File

@ -1,4 +1,4 @@
module zabbix-proxy 1.1; module zabbix-proxy 1.2;
require { require {
type var_lib_t; type var_lib_t;
@ -6,12 +6,15 @@ require {
type initrc_t; type initrc_t;
type unlabeled_t; type unlabeled_t;
type zabbix_t; type zabbix_t;
type zabbix_var_run_t;
class file { read getattr }; class file { read getattr };
class sem { unix_read unix_write associate destroy }; class sem { unix_read unix_write associate destroy };
class shm { unix_read unix_write associate destroy }; class shm { unix_read unix_write associate destroy };
class tcp_socket { create getattr accept shutdown read }; class tcp_socket { create getattr accept shutdown read };
class sock_file { create write };
class netlink_route_socket { create bind }; class netlink_route_socket { create bind };
class process setrlimit; class process setrlimit;
class unix_stream_socket connectto;
} }
#============= ping_t ============== #============= ping_t ==============
@ -21,3 +24,5 @@ allow initrc_t unlabeled_t:shm { unix_read unix_write associate destroy };
allow unlabeled_t self:tcp_socket { create getattr accept shutdown read }; allow unlabeled_t self:tcp_socket { create getattr accept shutdown read };
allow unlabeled_t self:netlink_route_socket { create bind }; allow unlabeled_t self:netlink_route_socket { create bind };
allow zabbix_t self:process setrlimit; allow zabbix_t self:process setrlimit;
allow zabbix_t zabbix_var_run_t:sock_file create;
allow zabbix_t self:unix_stream_socket connectto;

Write Preview
Loading…
Cancel
Save