## TCP daemon. ######################################## ## ## Execute tcpd in the tcpd domain. ## ## ## ## Domain allowed to transition. ## ## # interface(`tcpd_domtrans',` gen_require(` type tcpd_t, tcpd_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, tcpd_exec_t, tcpd_t) ') ######################################## ## ## Create a domain for services that ## utilize tcp wrappers. ## ## ## ## Type to be used as a domain. ## ## ## ## ## Type of the program to be used as an entry point to this domain. ## ## # interface(`tcpd_wrapped_domain',` gen_require(` type tcpd_t; role system_r; ') domtrans_pattern(tcpd_t, $2, $1) allow $1 tcpd_t:tcp_socket rw_socket_perms; ') ####################################### ## ## Read and write tcpd server TCP sockets. ## ## ## ## Domain allowed access. ## ## # interface(`tcpd_rw_tcp_sockets',` gen_require(` type tcpd_t; ') allow $1 tcpd_t:tcp_socket rw_socket_perms; ')