---
irc.te | 3 +++
1 file changed, 3 insertions(+)
diff --git a/irc.te b/irc.te
index 070c5c6..4899a0d 100644
--- a/irc.te
+++ b/irc.te
@@ -70,6 +70,9 @@ files_tmp_filetrans(irc_t, irc_tmp_t, { file dir lnk_file sock_file fifo_file })
kernel_read_system_state(irc_t)
+can_exec(irc_t, irc_exec_t)
+corecmd_search_bin(irc_t)
+
corenet_all_recvfrom_unlabeled(irc_t)
corenet_all_recvfrom_netlabel(irc_t)
corenet_tcp_sendrecv_generic_if(irc_t)
--
2.0.4
I couldn't figure out how that file is supposed to be ordered
(definitly not alphabetical), therefore I'm not sure if I inserted the
two directives at the right place.
Regards,
Luis Ressel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 949 bytes
Desc: not available
Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20140812/73eef408/attachment.bin
On 8/12/2014 8:08 AM, Luis Ressel wrote:
> ---
> irc.te | 3 +++
> 1 file changed, 3 insertions(+)
>
> diff --git a/irc.te b/irc.te
> index 070c5c6..4899a0d 100644
> --- a/irc.te
> +++ b/irc.te
> @@ -70,6 +70,9 @@ files_tmp_filetrans(irc_t, irc_tmp_t, { file dir lnk_file sock_file fifo_file })
>
> kernel_read_system_state(irc_t)
>
> +can_exec(irc_t, irc_exec_t)
> +corecmd_search_bin(irc_t)
> +
> corenet_all_recvfrom_unlabeled(irc_t)
> corenet_all_recvfrom_netlabel(irc_t)
> corenet_tcp_sendrecv_generic_if(irc_t)
Merged.
--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com