1 |
commit: d5238cafa6c1b972527056af9a61ae2052ccbe2c |
2 |
Author: Chris PeBenito <pebenito <AT> ieee <DOT> org> |
3 |
AuthorDate: Thu Jan 24 00:01:37 2019 +0000 |
4 |
Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> |
5 |
CommitDate: Sun Feb 10 04:11:25 2019 +0000 |
6 |
URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=d5238caf |
7 |
|
8 |
dovecot: Move lines. |
9 |
|
10 |
Signed-off-by: Jason Zaman <jason <AT> perfinion.com> |
11 |
|
12 |
policy/modules/services/dovecot.te | 24 ++++++++++++------------ |
13 |
1 file changed, 12 insertions(+), 12 deletions(-) |
14 |
|
15 |
diff --git a/policy/modules/services/dovecot.te b/policy/modules/services/dovecot.te |
16 |
index bee63714..f23cee27 100644 |
17 |
--- a/policy/modules/services/dovecot.te |
18 |
+++ b/policy/modules/services/dovecot.te |
19 |
@@ -288,12 +288,6 @@ tunable_policy(`dovecot_can_connect_db',` |
20 |
corenet_tcp_sendrecv_oracledb_port(dovecot_auth_t) |
21 |
') |
22 |
|
23 |
-optional_policy(` |
24 |
- userdom_list_user_tmp(dovecot_auth_t) |
25 |
- userdom_read_user_tmp_files(dovecot_auth_t) |
26 |
- userdom_read_user_tmp_symlinks(dovecot_auth_t) |
27 |
-') |
28 |
- |
29 |
optional_policy(` |
30 |
tunable_policy(`dovecot_can_connect_db',` |
31 |
mysql_stream_connect(dovecot_auth_t) |
32 |
@@ -302,6 +296,15 @@ optional_policy(` |
33 |
') |
34 |
') |
35 |
|
36 |
+optional_policy(` |
37 |
+ nis_authenticate(dovecot_auth_t) |
38 |
+') |
39 |
+ |
40 |
+optional_policy(` |
41 |
+ postfix_manage_private_sockets(dovecot_auth_t) |
42 |
+ postfix_search_spool(dovecot_auth_t) |
43 |
+') |
44 |
+ |
45 |
optional_policy(` |
46 |
postgresql_unpriv_client(dovecot_auth_t) |
47 |
|
48 |
@@ -312,12 +315,9 @@ optional_policy(` |
49 |
') |
50 |
|
51 |
optional_policy(` |
52 |
- nis_authenticate(dovecot_auth_t) |
53 |
-') |
54 |
- |
55 |
-optional_policy(` |
56 |
- postfix_manage_private_sockets(dovecot_auth_t) |
57 |
- postfix_search_spool(dovecot_auth_t) |
58 |
+ userdom_list_user_tmp(dovecot_auth_t) |
59 |
+ userdom_read_user_tmp_files(dovecot_auth_t) |
60 |
+ userdom_read_user_tmp_symlinks(dovecot_auth_t) |
61 |
') |
62 |
|
63 |
######################################## |