Skip to content
Snippets Groups Projects
Commit 59702592 authored by Stephen Smalley's avatar Stephen Smalley
Browse files

Make mtp permissive or unconfined. 


Also add rules from our policy.

Change-Id: I096025c1820f0b51f1abdf249c744cba387e0a65
Signed-off-by: default avatarStephen Smalley <sds@tycho.nsa.gov>
parent e21871c8
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 10 additions and 1 deletion
mtp.te
+ 10
1
View file @ 59702592
# vpn tunneling protocol manager # vpn tunneling protocol manager
type mtp, domain; type mtp, domain;
permissive_or_unconfined(mtp)
type mtp_exec, exec_type, file_type; type mtp_exec, exec_type, file_type;
init_daemon_domain(mtp) init_daemon_domain(mtp)
net_domain(mtp) net_domain(mtp)
unconfined_domain(mtp)
# pptp policy
allow mtp self:tcp_socket create_socket_perms;
allow mtp self:socket create_socket_perms;
allow mtp self:rawip_socket create_socket_perms;
allow mtp self:capability net_raw;
allow mtp ppp:process signal;
allow mtp port:tcp_socket name_connect;
allow mtp vpn_data_file:dir search;
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment