|
Server : Apache System : Linux server.mata-lashes.com 3.10.0-1160.90.1.el7.x86_64 #1 SMP Thu May 4 15:21:22 UTC 2023 x86_64 User : matalashes ( 1004) PHP Version : 8.1.29 Disable Function : NONE Directory : /usr/share/selinux/devel/include/contrib/ |
Upload File : |
## <summary>SSH dictionary attack mitigation.</summary> ######################################## ## <summary> ## Execute a domain transition to run denyhosts. ## </summary> ## <param name="domain"> ## <summary> ## Domain allowed to transition. ## </summary> ## </param> # interface(`denyhosts_domtrans',` gen_require(` type denyhosts_t, denyhosts_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, denyhosts_exec_t, denyhosts_t) ') ######################################## ## <summary> ## Execute denyhost server in the ## denyhost domain. ## </summary> ## <param name="domain"> ## <summary> ## Domain allowed to transition. ## </summary> ## </param> # interface(`denyhosts_initrc_domtrans',` gen_require(` type denyhosts_initrc_exec_t; ') init_labeled_script_domtrans($1, denyhosts_initrc_exec_t) ') ######################################## ## <summary> ## All of the rules required to ## administrate an denyhosts environment. ## </summary> ## <param name="domain"> ## <summary> ## Domain allowed access. ## </summary> ## </param> ## <param name="role"> ## <summary> ## Role allowed access. ## </summary> ## </param> ## <rolecap/> # interface(`denyhosts_admin',` gen_require(` type denyhosts_t, denyhosts_var_lib_t, denyhosts_var_lock_t; type denyhosts_var_log_t, denyhosts_initrc_exec_t; ') allow $1 denyhosts_t:process signal_perms; ps_process_pattern($1, denyhosts_t) tunable_policy(`deny_ptrace',`',` allow $1 denyhosts_t:process ptrace; ') denyhosts_initrc_domtrans($1) domain_system_change_exemption($1) role_transition $2 denyhosts_initrc_exec_t system_r; allow $2 system_r; files_list_var_lib($1) admin_pattern($1, denyhosts_var_lib_t) logging_list_logs($1) admin_pattern($1, denyhosts_var_log_t) files_list_locks($1) admin_pattern($1, denyhosts_var_lock_t) ')