public inbox for gentoo-hardened@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-hardened] nrpe...
@ 2011-11-03  0:32 Nico Baggus
  0 siblings, 0 replies; only message in thread
From: Nico Baggus @ 2011-11-03  0:32 UTC (permalink / raw
  To: gentoo-hardened

This is also used for the nagios stuff:

---8<---
module nrpe 1.0;

require {
        type nrpe_t;
        type proc_mdstat_t;
        type system_cronjob_t;
        class tcp_socket getattr;
        class unix_dgram_socket getattr;
        class file { read getattr open ioctl };
}

#============= nrpe_t ==============
allow nrpe_t proc_mdstat_t:file { read getattr open ioctl };

#============= system_cronjob_t ==============
allow system_cronjob_t nrpe_t:tcp_socket getattr;
allow system_cronjob_t nrpe_t:unix_dgram_socket getattr;



^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2011-11-03  0:32 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2011-11-03  0:32 [gentoo-hardened] nrpe Nico Baggus

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox