## TCP daemon.
########################################
##
## Execute tcpd in the tcpd domain.
##
##
##
## Domain allowed to transition.
##
##
#
interface(`tcpd_domtrans',`
gen_require(`
type tcpd_t, tcpd_exec_t;
')
corecmd_search_bin($1)
domtrans_pattern($1, tcpd_exec_t, tcpd_t)
')
########################################
##
## Create a domain for services that
## utilize tcp wrappers.
##
##
##
## Type to be used as a domain.
##
##
##
##
## Type of the program to be used as an entry point to this domain.
##
##
#
interface(`tcpd_wrapped_domain',`
gen_require(`
type tcpd_t;
role system_r;
')
domtrans_pattern(tcpd_t, $2, $1)
allow $1 tcpd_t:tcp_socket rw_socket_perms;
')
#######################################
##
## Read and write tcpd server TCP sockets.
##
##
##
## Domain allowed access.
##
##
#
interface(`tcpd_rw_tcp_sockets',`
gen_require(`
type tcpd_t;
')
allow $1 tcpd_t:tcp_socket rw_socket_perms;
')