From: sven.vermeulen@siphos.be (Sven Vermeulen) Date: Wed, 9 Mar 2011 22:07:34 +0100 Subject: [refpolicy] [PATCH 03/15] Allow socket creation for imapd/pop3d communication Message-ID: <20110309210734.GA4670@siphos.be> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com During startup, authdaemon creates /var/lib/courier/authdaemon and creates a socket for communication with courier imapd and pop3d daemons Signed-off-by: Sven Vermeulen --- policy/modules/services/courier.te | 2 ++ 1 files changed, 2 insertions(+), 0 deletions(-) diff --git a/policy/modules/services/courier.te b/policy/modules/services/courier.te index 55d64bc..877bab8 100644 --- a/policy/modules/services/courier.te +++ b/policy/modules/services/courier.te @@ -52,7 +52,9 @@ allow courier_authdaemon_t courier_tcpd_t:fd use; allow courier_authdaemon_t courier_tcpd_t:tcp_socket rw_stream_socket_perms; allow courier_authdaemon_t courier_tcpd_t:fifo_file rw_file_perms; +manage_dirs_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t) manage_sock_files_pattern(courier_authdaemon_t, courier_spool_t, courier_spool_t) +manage_sock_files_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t) files_search_spool(courier_authdaemon_t) corecmd_search_bin(courier_authdaemon_t) -- 1.7.3.4