Master template index:

Module: apache

Layer: services

apache_content_template( prefix )

Create a set of derived types for apache web content.

Module: apache

Layer: services

apache_ro_content( domain )

Mark content as being readable by standard apache processes

Module: apache

Layer: services

apache_rw_content( domain )

Mark content as being read/write by standard apache processes

Module: courier

Layer: services

courier_domain_template( prefix )

Template for creating courier server processes.

Module: cron

Layer: services

cron_common_crontab_template( userdomain_prefix )

The common rules for a crontab domain.

Module: dbus

Layer: services

dbus_role_template( role_prefix , role , domain )

Role access for dbus

Module: djbdns

Layer: services

djbdns_daemontools_domain_template( prefix )

Create a set of derived types for djbdns components that are directly supervised by daemontools.

Module: execmem

Layer: apps

execmem_role_template( role_prefix , user_role , user_domain )

The role template for the execmem module.

Module: gnome

Layer: apps

gnome_read_config( userdomain_prefix , user_domain )

read gnome homedir content (.config)

Module: gnome

Layer: apps

gnome_read_gconf_config( userdomain_prefix , user_domain )

read gconf config files

Module: java

Layer: apps

java_domtrans( domain )

Run java in javaplugin domain.

Module: java

Layer: apps

java_role_template( role_prefix , user_role , user_domain )

The role template for the java module.

Module: kerberos

Layer: services

kerberos_keytab_template( prefix , domain )

Create a derived type for kerberos keytab

Module: lpd

Layer: services

lpd_domtrans_lpr( domain )

Transition to a user lpr domain.

Module: mailman

Layer: services

mailman_domain_template( userdomain_prefix )

The template to define a mailmain domain.

Module: milter

Layer: services

milter_template( milter_name )

Create a set of derived types for various mail filter applications using the milter interface.

Module: mono

Layer: apps

mono_role_template( role_prefix , user_role , user_domain )

The role template for the mono module.

Module: mta

Layer: services

mta_base_mail_template( domain_prefix )

Basic mail transfer agent domain template.

Module: policykit

Layer: services

policykit_role( user_role , user_domain )

The per role template for the policykit module.

Module: postfix

Layer: services

postfix_domain_template( prefix )

Creates types and rules for a basic postfix process domain.

Module: postfix

Layer: services

postfix_server_domain_template( prefix )

Creates a postfix server process domain.

Module: postfix

Layer: services

postfix_user_domain_template( prefix )

Creates a process domain for programs that are ran by users.

Module: qemu

Layer: apps

qemu_domain_template( prefix )

Creates types and rules for a basic qemu process domain.

Module: qemu

Layer: apps

qemu_role( userdomain_prefix , user_role , user_domain )

The per role template for the qemu module.

Module: qmail

Layer: services

qmail_child_domain_template( child_prefix , parent_domain )

Template for qmail parent/sub-domain pairs

Module: razor

Layer: services

razor_common_domain_template( prefix )

Template to create types and rules common to all razor domains.

Module: razor

Layer: services

razor_manage_user_home_files( domain )

Create, read, write, and delete razor files in a user home subdirectory.

Module: rlogin

Layer: services

rlogin_read_home_content( userdomain_prefix , user_domain )

read rlogin homedir content (.config)

Module: rpc

Layer: services

rpc_domain_template( userdomain_prefix )

The template to define a rpc domain.

Module: samba

Layer: services

samba_helper_template( prefix )

Create a set of derived types for apache web content.

Module: samba

Layer: services

samba_role_notrans( role )

The role for the samba module.

Module: sandbox

Layer: apps

sandbox_domain_template( prefix )

Creates types and rules for a basic qemu process domain.

Module: sandbox

Layer: apps

sandbox_x_domain_template( prefix )

Creates types and rules for a basic qemu process domain.

Module: screen

Layer: apps

screen_role_template( role_prefix , user_role , user_domain )

The role template for the screen module.

Module: ssh

Layer: services

ssh_basic_client_template( userdomain_prefix , user_domain , user_role )

Basic SSH client template.

Module: ssh

Layer: services

ssh_role_template( role_prefix , role , domain )

Role access for ssh

Module: ssh

Layer: services

ssh_server_template( userdomain_prefix )

The template to define a ssh server.

Module: su

Layer: admin

su_restricted_domain_template( userdomain_prefix , user_domain , user_role )

Restricted su domain template.

Module: su

Layer: admin

su_role_template( role_prefix , user_role , user_domain )

The role template for the su module.

Module: sudo

Layer: admin

sudo_role_template( role_prefix , user_role , user_domain )

The role template for the sudo module.

Module: userdomain

Layer: system

userdom_admin_login_user_template( userdomain_prefix )

The template for creating a unprivileged user roughly equivalent to a regular linux user.

Module: userdomain

Layer: system

userdom_admin_user_template( userdomain_prefix )

The template for creating an administrative user.

Module: userdomain

Layer: system

userdom_base_user_template( userdomain_prefix )

The template containing the most basic rules common to all users.

Module: userdomain

Layer: system

userdom_change_password_template( userdomain_prefix )

The template for allowing the user to change passwords.

Module: userdomain

Layer: system

userdom_common_user_template( userdomain_prefix )

The template containing rules common to unprivileged users and administrative users.

Module: userdomain

Layer: system

userdom_login_user_template( userdomain_prefix )

The template for creating a login user.

Module: userdomain

Layer: system

userdom_restricted_user_template( userdomain_prefix )

The template for creating a unprivileged login user.

Module: userdomain

Layer: system

userdom_restricted_xwindows_user_template( userdomain_prefix )

The template for creating a unprivileged xwindows login user.

Module: userdomain

Layer: system

userdom_security_admin_template( domain , role )

Allow user to run as a secadm

Module: userdomain

Layer: system

userdom_unpriv_user_template( userdomain_prefix )

The template for creating a unprivileged user roughly equivalent to a regular linux user.

Module: userdomain

Layer: system

userdom_unpriv_usertype( domain , userdomain_prefix , domain )

Define this type as a Allow apps to set rlimits on userdomain

Module: userhelper

Layer: apps

userhelper_role_template( userrole_prefix , user_role , user_domain )

The role template for the userhelper module.

Module: virt

Layer: services

virt_domain_template( prefix )

Creates types and rules for a basic qemu process domain.

Module: wine

Layer: apps

wine_role( userdomain_prefix , user_domain , user_role )

The per role template for the wine module.

Module: wine

Layer: apps

wine_role_template( role_prefix , user_role , user_domain )

The role template for the wine module.

Module: wm

Layer: apps

wm_role_template( role_prefix , user_role , user_domain )

The role template for the wm module.

Module: xserver

Layer: services

xserver_common_x_domain_template( prefix , domain )

Interface to provide X object permissions on a given X server to an X client domain. Provides the minimal set required by a basic X client application.

Module: xserver

Layer: services

xserver_object_types_template( prefix )

Template for creating the set of types used in an X windows domain.

Module: xserver

Layer: services

xserver_read_user_iceauth( domain )

Read a user Iceauthority domain.

Module: xserver

Layer: services

xserver_user_x_domain_template( prefix , domain , tmpfs_type )

Interface to provide X object permissions on a given X server to an X client domain. Provides the minimal set required by a basic X client application.