Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
path: root/policy/modules/system/init.te
diff options
context:
space:
mode:
authorGuido Trentalancia <guido@trentalancia.com>2023-11-19 22:21:09 +0100
committerKenton Groombridge <concord@gentoo.org>2024-03-01 12:01:11 -0500
commit8b72ea97b6d26072f38ad2153d53a2ac858629cb (patch)
tree44461fdac309ba85cf8b14e9ef74ec4eac8f3149 /policy/modules/system/init.te
parentrpm: fixes for dnf (diff)
downloadhardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.tar.gz
hardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.tar.bz2
hardened-refpolicy-8b72ea97b6d26072f38ad2153d53a2ac858629cb.zip
The LDAP server only needs to read generic certificate files, not manage them.
Modify the init policy to match the comment and the LDAP server actual behavior. Signed-off-by: Guido Trentalancia <guido@trentalancia.com> Signed-off-by: Kenton Groombridge <concord@gentoo.org>
Diffstat (limited to 'policy/modules/system/init.te')
-rw-r--r--policy/modules/system/init.te2
1 files changed, 1 insertions, 1 deletions
diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
index c83d88b74..3672399f1 100644
--- a/policy/modules/system/init.te
+++ b/policy/modules/system/init.te
@@ -917,7 +917,7 @@ logging_read_audit_config(initrc_t)
miscfiles_read_localization(initrc_t)
# slapd needs to read cert files from its initscript
-miscfiles_manage_generic_cert_files(initrc_t)
+miscfiles_read_generic_certs(initrc_t)
seutil_read_config(initrc_t)