19 lines
319 B
Text
19 lines
319 B
Text
|
policy_module(logadm, 1.0.0)
|
||
|
|
||
|
########################################
|
||
|
#
|
||
|
# Declarations
|
||
|
#
|
||
|
|
||
|
role logadm_r;
|
||
|
|
||
|
userdom_confined_admin_template(logadm)
|
||
|
|
||
|
########################################
|
||
|
#
|
||
|
# logadmin local policy
|
||
|
#
|
||
|
|
||
|
allow logadm_t self:capability { dac_read_search kill sys_nice };
|
||
|
logging_admin(logadm_t, logadm_r)
|