API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 27th, 2020
80
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.73 KB | None | 0 0
raw download clone embed print report
  1. <grift> (typeattribute myapp_type-attribute)
  2. <grift> # 3 different myapp executable file types for 3 ranges
  3. <grift> (type myapp_c111_type)
  4. <grift> (type myapp_c122_type)
  5. <grift> (type myapp_c133_type)
  6. <grift> (typeattributeset myapp_type_attribute (myapp_c111_type myapp_c122_type myapp_c133_type))
  7. <grift> # range transitions for foo
  8. <grift> (rangetransition foo myapp_c111_type process s0:c111)
  9. <grift> (rangetransition foo myapp_c122_type process s0:c122)
  10. <grift> (rangetransition foo myapp_c133_type process s0:c133)
  11. <grift> # allow foo to mapexec all myapp exec typees
  12. <grift> (allow foo myapp_type_attribut (file (read ioctl lock open execute map)))
  13. <grift> then you can just chcon -t myapp_c133_type to make foo transition to s0:c133
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!