diff options
author | Guido Trentalancia <guido@trentalancia.com> | 2023-11-19 22:21:09 +0100 |
---|---|---|
committer | Kenton Groombridge <concord@gentoo.org> | 2024-03-01 12:01:11 -0500 |
commit | 8b72ea97b6d26072f38ad2153d53a2ac858629cb (patch) | |
tree | 44461fdac309ba85cf8b14e9ef74ec4eac8f3149 /policy/modules/system/init.te | |
parent | rpm: fixes for dnf (diff) | |
download | hardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.tar.gz hardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.tar.bz2 hardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.zip |
The LDAP server only needs to read generic certificate files, not manage them.
Modify the init policy to match the comment and the
LDAP server actual behavior.
Signed-off-by: Guido Trentalancia <guido@trentalancia.com>
Signed-off-by: Kenton Groombridge <concord@gentoo.org>
Diffstat (limited to 'policy/modules/system/init.te')
-rw-r--r-- | policy/modules/system/init.te | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te index c83d88b74..3672399f1 100644 --- a/policy/modules/system/init.te +++ b/policy/modules/system/init.te @@ -917,7 +917,7 @@ logging_read_audit_config(initrc_t) miscfiles_read_localization(initrc_t) # slapd needs to read cert files from its initscript -miscfiles_manage_generic_cert_files(initrc_t) +miscfiles_read_generic_certs(initrc_t) seutil_read_config(initrc_t) |