| ubuntu-gutsy |
/usr/lib/postfix/smtpd |
# $Id: usr.lib.postfix.smtpd 741 2007-06-11 22:55:56Z seth_arnold $
# ------------------------------------------------------------------
#
# Copyright (C) 2002-2006 Novell/SUSE
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of version 2 of the GNU General Public
# License published by the Free Software Foundation.
#
# ------------------------------------------------------------------
#include <tunables/global>
/usr/lib/postfix/smtpd {
#include <abstractions/base>
#include <abstractions/kerberosclient>
#include <abstractions/nameservice>
#include <program-chunks/postfix-common>
capability dac_override,
capability dac_read_search,
capability setgid,
capability setuid,
/dev/urandom r,
/etc/aliases.db krw,
/etc/fstab r,
/etc/mailname r,
/etc/mtab r,
/etc/postfix/*.db r,
/etc/postfix/main.cf r,
/etc/postfix/prng_exch rw,
/etc/postfix/smtpd_scache.dir r,
/etc/postfix/smtpd_scache.pag rw,
/etc/postfix/{ssl/,}*.pem r,
/etc/ssl/certs/ssl-cert-snakeoil.pem r,
/etc/ssl/private/* r,
/usr/lib/postfix/smtpd rmix,
/usr/lib/sasl2/ mr,
/usr/lib/sasl2/* mr,
/usr/lib64/sasl2/ mr,
/usr/lib64/sasl2/* mr,
/usr/sbin/postdrop rPx,
/usr/share/ssl/certs/ca-bundle.crt r,
/usr/share/ssl/openssl.cnf r,
/var/lib/mailman/data/aliases.db r,
/var/run/sasl2/mux w,
/var/spool/postfix/etc/* r,
/var/spool/postfix/lib/* mr,
/{var/spool/postfix/,}pid/inet.* krw,
/{var/spool/postfix/,}private/anvil w,
/{var/spool/postfix/,}private/proxymap w,
/{var/spool/postfix/,}private/rewrite w,
/{var/spool/postfix/,}private/tlsmgr w,
/{var/spool/postfix/,}public/cleanup w,
@{PROC}/net/if_inet6 r,
}
|
10 months ago |
|
42 |
stive |
Edit |
History |
|