Zabbix monitoring RPM
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

zabbix-proxy.te 1.2KB

123456789101112131415161718192021222324252627282930
  1. module zabbix-proxy 1.4;
  2. require {
  3. type var_lib_t;
  4. type ping_t;
  5. type initrc_t;
  6. type unlabeled_t;
  7. type zabbix_t;
  8. type zabbix_var_run_t;
  9. type zabbix_var_lib_t;
  10. class file { read getattr };
  11. class sem { unix_read unix_write associate destroy };
  12. class shm { unix_read unix_write associate destroy };
  13. class tcp_socket { create getattr accept shutdown read };
  14. class sock_file { create write unlink };
  15. class netlink_route_socket { create bind };
  16. class process setrlimit;
  17. class unix_stream_socket connectto;
  18. }
  19. #============= ping_t ==============
  20. allow ping_t var_lib_t:file { read getattr };
  21. allow ping_t zabbix_var_lib_t:file { read getattr };
  22. allow initrc_t unlabeled_t:sem { unix_read unix_write associate destroy };
  23. allow initrc_t unlabeled_t:shm { unix_read unix_write associate destroy };
  24. allow unlabeled_t self:tcp_socket { create getattr accept shutdown read };
  25. allow unlabeled_t self:netlink_route_socket { create bind };
  26. allow zabbix_t self:process setrlimit;
  27. allow zabbix_t zabbix_var_run_t:sock_file { create write unlink };
  28. allow zabbix_t self:unix_stream_socket connectto;