ansible/roles/base/files/selinux/rsyslog-audit.te
2020-04-24 21:34:27 +02:00

14 lines
370 B
Text

module rsyslog-audit 1.3;
require {
type auditd_log_t;
type syslogd_t;
type var_t;
class file { getattr ioctl open read };
class dir { getattr open read search };
}
#============= syslogd_t ==============
allow syslogd_t auditd_log_t:dir { getattr open read search };
allow syslogd_t auditd_log_t:file { getattr ioctl open read };
allow syslogd_t var_t:dir read;