aboutsummaryrefslogblamecommitdiff
path: root/share/security/lomac-policy.contexts
blob: 6529d082878ef75d92fe0957cd85f3796b117a94 (plain) (tree) 
df9bd3e90c3e



























0806dd92385d


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

28
29



























                                                                 

                                           
# $FreeBSD$
#
# This is a sample LOMAC policy based upon the PLM defined in the
# original FreeBSD LOMAC port.  It may be configured on a
# system via setfsmac(8).

.*				lomac/high
/sbin/dhclient			lomac/high[low]
/dev(/.*)?			lomac/equal
# This is not an exhaustive list of all "privileged" devices.
/dev/mdctl			lomac/high
/dev/pci			lomac/high
/dev/k?mem			lomac/high
/dev/io				lomac/high
/dev/agp.*			lomac/high
(/var)?/tmp(/.*)?		lomac/equal
/tmp/\.X11-unix			lomac/high[equal]
/tmp/\.X11-unix/.*		lomac/equal
/proc(/.*)?			lomac/equal
/mnt.*				lomac/low
(/usr)?/home			lomac/high[low]
(/usr)?/home/.*			lomac/low
/var/mail(/.*)?			lomac/low
/var/spool/mqueue(/.*)?		lomac/low
(/mnt)?/cdrom(/.*)?		lomac/high
(/usr)?/home/(ftp|samba)(/.*)?	lomac/high
/var/log/sendmail\.st		lomac/low
/var/run/utx.active		lomac/equal
/var/log/utx.(lastlogin|log)	lomac/equal
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-20 22:24:13 +0000