[refpolicy] [PATCH 03/15] Allow socket creation for imapd/pop3d communication
Sven Vermeulen
sven.vermeulen at siphos.be
Wed Mar 9 15:07:34 CST 2011
During startup, authdaemon creates /var/lib/courier/authdaemon and creates
a socket for communication with courier imapd and pop3d daemons
Signed-off-by: Sven Vermeulen <sven.vermeulen at siphos.be>
---
policy/modules/services/courier.te | 2 ++
1 files changed, 2 insertions(+), 0 deletions(-)
diff --git a/policy/modules/services/courier.te b/policy/modules/services/courier.te
index 55d64bc..877bab8 100644
--- a/policy/modules/services/courier.te
+++ b/policy/modules/services/courier.te
@@ -52,7 +52,9 @@ allow courier_authdaemon_t courier_tcpd_t:fd use;
allow courier_authdaemon_t courier_tcpd_t:tcp_socket rw_stream_socket_perms;
allow courier_authdaemon_t courier_tcpd_t:fifo_file rw_file_perms;
+manage_dirs_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t)
manage_sock_files_pattern(courier_authdaemon_t, courier_spool_t, courier_spool_t)
+manage_sock_files_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t)
files_search_spool(courier_authdaemon_t)
corecmd_search_bin(courier_authdaemon_t)
--
1.7.3.4
More information about the refpolicy
mailing list