Local policy for dictd having files in ~/.dictd

author: Matěj Cepl <mcepl@cepl.eu> 2021-02-06 01:30:55 +0100
committer: Matěj Cepl <mcepl@cepl.eu> 2021-02-06 01:30:55 +0100
commit: 02b7b92051ad176febdf6a4c2f77b0ac7db3097b (patch)
tree: 752cc653fc4c4be0172c2ce70357af0e35e0fd28 /mydictdaddon.te
download: SUSE_SELinux-02b7b92051ad176febdf6a4c2f77b0ac7db3097b.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/mydictdaddon.te b/mydictdaddon.te
new file mode 100644
index 0000000..76c2a14
--- /dev/null
+++ b/mydictdaddon.te
@@ -0,0 +1,13 @@
+policy_module(mydictdaddon,1.0.2)
+gen_require(` type dictd_t; ')
+gen_require(` attribute userdomain; ')
+userdom_search_user_home_dirs(dictd_t)
+type dictd_home_t;
+userdom_user_home_content(dictd_home_t)
+allow dictd_t dictd_home_t:dir list_dir_perms;
+allow dictd_t dictd_home_t:file read_file_perms;
+allow dictd_t dictd_home_t:lnk_file read_lnk_file_perms;;
+allow userdomain dictd_home_t:dir manage_dir_perms;
+allow userdomain dictd_home_t:file manage_file_perms;
+allow userdomain dictd_home_t:lnk_file manage_lnk_file_perms;
+userdom_user_home_dir_filetrans(userdomain, dictd_home_t, dir, ".dictd")
author	Matěj Cepl <mcepl@cepl.eu>	2021-02-06 01:30:55 +0100
committer	Matěj Cepl <mcepl@cepl.eu>	2021-02-06 01:30:55 +0100
commit	02b7b92051ad176febdf6a4c2f77b0ac7db3097b (patch)
tree	752cc653fc4c4be0172c2ce70357af0e35e0fd28 /mydictdaddon.te
download	SUSE_SELinux-02b7b92051ad176febdf6a4c2f77b0ac7db3097b.tar.gz