[SELinux] Wildcard for object classes?

To: debian-user@lists.debian.org
Subject: [SELinux] Wildcard for object classes?
From: Simon Brandmair <sbrandmair@gmx.net>
Date: Thu, 3 Feb 2011 20:52:57 +0100
Message-id: <[🔎] iif12p$19c$00$1@news.t-online.com>

Hi,

I posted this to  linux.debian.security but didn't get any reply. Maybe 
someone can help me out here.

I just started looking into SELinux. I am wondering if there is a way to 
have wildcards in avc rules like:
	auditallow source_t target_t : * * ;
which audits all access from source_t to target_t.

Or do I have to add all classes objects to the rule like:
	auditallow source_t target_t : {appletalk_socket, association, 
	blk_file ... } * ;

Cheers,
Simon

Reply to:

debian-user@lists.debian.org
Simon Brandmair (on-list)
Simon Brandmair (off-list)

Prev by Date: Re: strange behavior of mount
Next by Date: Re: no audio in microphone
Previous by thread: Re: no audio in microphone-SOLVED-then broke
Next by thread: Starting NFS common utilities failed!
Index(es):
- Date
- Thread