diff options
| author |   Chris PeBenito <cpebenito@tresys.com> | 2015-10-20 14:33:56 -0400 |
|---|---|---|
| committer |   Jason Zaman <jason@perfinion.com> | 2015-10-26 11:54:24 +0800 |
| commit | eaa1a1b1454ce8ae38f2d84774b3047e9203efd9 (patch) | |
| tree | 8f1427c842d9ed4a9121533739b35689636008cb /policy/modules/system/logging.fc | |
| parent | Add rules for sysadm_r to manage the services. (diff) | |
| download | hardened-refpolicy-eaa1a1b1454ce8ae38f2d84774b3047e9203efd9.tar.gz hardened-refpolicy-eaa1a1b1454ce8ae38f2d84774b3047e9203efd9.tar.bz2 hardened-refpolicy-eaa1a1b1454ce8ae38f2d84774b3047e9203efd9.zip | |
Add systemd units for core refpolicy services.
Only for services that already have a named init script.
Add rules to init_startstop_service(), with conditional arg until
all of refpolicy-contrib callers are updated.
Diffstat (limited to 'policy/modules/system/logging.fc')
| -rw-r--r-- | policy/modules/system/logging.fc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/policy/modules/system/logging.fc b/policy/modules/system/logging.fc index fb319d4fd..e504aec44 100644 --- a/policy/modules/system/logging.fc +++ b/policy/modules/system/logging.fc @@ -17,6 +17,8 @@ /sbin/syslogd -- gen_context(system_u:object_r:syslogd_exec_t,s0) /sbin/syslog-ng -- gen_context(system_u:object_r:syslogd_exec_t,s0) +/usr/lib/systemd/system/auditd.* -- gen_context(system_u:object_r:auditd_unit_t,s0) +/usr/lib/systemd/system/[^/]*systemd-journal.* -- gen_context(system_u:object_r:syslogd_unit_t,s0) /usr/lib/systemd/systemd-journald -- gen_context(system_u:object_r:syslogd_exec_t,s0) /usr/sbin/klogd -- gen_context(system_u:object_r:klogd_exec_t,s0) |