diff options
| author |   Luis Ressel <aranea@aixah.de> | 2016-12-10 00:54:39 +0100 |
|---|---|---|
| committer |   Jason Zaman <jason@perfinion.com> | 2017-01-02 00:21:02 +0800 |
| commit | a2e85e4dd8ee39f717e8eafafe2ea1818d007180 (patch) | |
| tree | 9b4fa6d49a0b0e02949aedc6609a64202dc52122 /policy/modules/admin | |
| parent | Module version bump for plymouth fix from Guido Trentalancia. (diff) | |
| download | hardened-refpolicy-a2e85e4dd8ee39f717e8eafafe2ea1818d007180.tar.gz hardened-refpolicy-a2e85e4dd8ee39f717e8eafafe2ea1818d007180.tar.bz2 hardened-refpolicy-a2e85e4dd8ee39f717e8eafafe2ea1818d007180.zip | |
netutils: Label iptstate as netutils_t
>From the package description: "IP Tables State displays states being kept
by iptables in a top-like format". The netutils_t permission set fits it
snugly.
Diffstat (limited to 'policy/modules/admin')
| -rw-r--r-- | policy/modules/admin/netutils.fc | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/policy/modules/admin/netutils.fc b/policy/modules/admin/netutils.fc index a4672cae..f5be3f95 100644 --- a/policy/modules/admin/netutils.fc +++ b/policy/modules/admin/netutils.fc @@ -11,7 +11,8 @@ /usr/sbin/arping -- gen_context(system_u:object_r:netutils_exec_t,s0) /usr/sbin/fping -- gen_context(system_u:object_r:ping_exec_t,s0) -/usr/sbin/traceroute.* -- gen_context(system_u:object_r:traceroute_exec_t,s0) /usr/sbin/hping2 -- gen_context(system_u:object_r:ping_exec_t,s0) +/usr/sbin/iptstate -- gen_context(system_u:object_r:netutils_exec_t,s0) /usr/sbin/send_arp -- gen_context(system_u:object_r:ping_exec_t,s0) /usr/sbin/tcpdump -- gen_context(system_u:object_r:netutils_exec_t,s0) +/usr/sbin/traceroute.* -- gen_context(system_u:object_r:traceroute_exec_t,s0) |