summaryrefslogtreecommitdiff
path: root/src/misc/conf.cil
diff options
context:
space:
mode:
Diffstat (limited to 'src/misc/conf.cil')
-rw-r--r--src/misc/conf.cil16
1 files changed, 16 insertions, 0 deletions
diff --git a/src/misc/conf.cil b/src/misc/conf.cil
new file mode 100644
index 0000000..f7c70d4
--- /dev/null
+++ b/src/misc/conf.cil
@@ -0,0 +1,16 @@
+;; SPDX-FileCopyrightText: © 2023 Dominick Grift <dominick.grift@defensec.nl>
+;; SPDX-License-Identifier: Unlicense
+
+(handleunknown allow)
+(mls true)
+
+(policycap "always_check_network")
+(policycap "cgroup_seclabel")
+(policycap "extended_socket_class")
+(policycap "genfs_seclabel_symlinks")
+(policycap "network_peer_controls")
+(policycap "nnp_nosuid_transition")
+(policycap "open_perms")
+
+;; SELinux 3.4/Linux 5.18
+;; (policycap "ioctl_skip_cloexec")
generated by cgit v1.2.3 (git 2.46.0) at 2025-09-20 19:51:30 +0000