ansible-roles/roles/squid/files/ufdb.te

module ufdb 1.3;

require {
        type initrc_tmp_t;
        type initrc_t;
        type tmp_t;
        type squid_t;
        type unconfined_service_t;
        class sock_file write;
        class unix_stream_socket connectto;
}

#============= squid_t ==============
allow squid_t initrc_t:unix_stream_socket connectto;
allow squid_t unconfined_service_t:unix_stream_socket connectto;
allow squid_t initrc_tmp_t:sock_file write;
allow squid_t tmp_t:sock_file write;
Update to 2023-09-13 23:00 2023-09-13 23:00:21 +02:00			`module ufdb 1.3;`
Update to 2021-12-01 19:13 2021-12-01 19:13:34 +01:00
			`require {`
			`type initrc_tmp_t;`
			`type initrc_t;`
			`type tmp_t;`
			`type squid_t;`
Update to 2023-09-13 23:00 2023-09-13 23:00:21 +02:00			`type unconfined_service_t;`
Update to 2021-12-01 19:13 2021-12-01 19:13:34 +01:00			`class sock_file write;`
			`class unix_stream_socket connectto;`
			`}`

			`#============= squid_t ==============`
			`allow squid_t initrc_t:unix_stream_socket connectto;`
Update to 2023-09-13 23:00 2023-09-13 23:00:21 +02:00			`allow squid_t unconfined_service_t:unix_stream_socket connectto;`
Update to 2021-12-01 19:13 2021-12-01 19:13:34 +01:00			`allow squid_t initrc_tmp_t:sock_file write;`
			`allow squid_t tmp_t:sock_file write;`