diff options
Diffstat (limited to 'sepolicy/init_eth0.te')
| -rw-r--r-- | sepolicy/init_eth0.te | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/sepolicy/init_eth0.te b/sepolicy/init_eth0.te new file mode 100644 index 0000000..45fd56d --- /dev/null +++ b/sepolicy/init_eth0.te @@ -0,0 +1,10 @@ +type init_eth0, domain; +type init_eth0_exec, exec_type, file_type; + +init_daemon_domain(init_eth0) + +allow init_eth0 self:capability { net_admin net_raw }; +allow init_eth0 self:udp_socket { create ioctl }; +allowxperm init_eth0 self:udp_socket ioctl priv_sock_ioctls; +allow init_eth0 shell_exec:file { execute getattr read }; +allow init_eth0 toolbox_exec:file { execute execute_no_trans getattr open read }; |