MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity

Allow python scripts to write to exec-errors.log

pull/5366/head
Richard van den Berg 2019-10-29 08:20:41 +01:00
parent abfeb3af10
commit c6c899d0e5
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
INSTALL/misplogrotate.te
View File

@ -1,8 +1,9 @@
module misplogrotate 1.1; module misplogrotate 1.2;
require { require {
type httpd_t; type httpd_t;
type logrotate_t; type logrotate_t;
type httpd_log_t; type httpd_log_t;
type httpd_sys_script_t;
type httpd_sys_content_t; type httpd_sys_content_t;
type httpd_sys_rw_content_t; type httpd_sys_rw_content_t;
class dir { ioctl read getattr lock search open remove_name }; class dir { ioctl read getattr lock search open remove_name };
@ -12,4 +13,4 @@ require {
allow logrotate_t httpd_sys_content_t:dir { ioctl read getattr lock search open }; allow logrotate_t httpd_sys_content_t:dir { ioctl read getattr lock search open };
allow logrotate_t httpd_sys_rw_content_t:dir { ioctl read getattr lock search open }; allow logrotate_t httpd_sys_rw_content_t:dir { ioctl read getattr lock search open };
allow httpd_t httpd_log_t:dir remove_name; allow httpd_t httpd_log_t:dir remove_name;
allow httpd_t httpd_log_t:file { unlink write }; allow { httpd_t httpd_sys_script_t } httpd_log_t:file { unlink write };