Created
November 11, 2015 09:17
-
-
Save jmolinasoler/3a6aa687a753a1720494 to your computer and use it in GitHub Desktop.
fail2ban-syslog.te
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Steps: | |
# 1. Create file fail2ban.te | |
# 2. checkmodule -M -m -o fail2ban-syslog.mod fail2ban-syslog.te | |
# 3. semodule_package -o fail2ban-syslog.pp -m fail2ban-syslog.mod | |
# 4. semodule -i fail2ban-syslog.pp | |
# 5. sudo service fail2ban restart | |
module fail2ban-syslog 1.0; | |
require { | |
type syslogd_var_run_t; | |
type fail2ban_t; | |
class dir read; | |
class file read; | |
class file open; | |
class file getattr; | |
} | |
#============= fail2ban_t ============== | |
allow fail2ban_t syslogd_var_run_t:dir read; | |
allow fail2ban_t syslogd_var_run_t:file read; | |
allow fail2ban_t syslogd_var_run_t:file open; | |
allow fail2ban_t syslogd_var_run_t:file getattr; |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment