| 1 | # ------------------------------------------------------------------ |
| 2 | # |
| 3 | # Copyright (C) 2002-2005 Novell/SUSE |
| 4 | # |
| 5 | # This program is free software; you can redistribute it and/or |
| 6 | # modify it under the terms of version 2 of the GNU General Public |
| 7 | # License published by the Free Software Foundation. |
| 8 | # |
| 9 | # ------------------------------------------------------------------ |
| 10 | |
| 11 | #include <tunables/global> |
| 12 | |
| 13 | /usr/sbin/xinetd { |
| 14 | #include <abstractions/base> |
| 15 | #include <abstractions/nameservice> |
| 16 | |
| 17 | capability net_bind_service, |
| 18 | capability setgid, |
| 19 | capability setuid, |
| 20 | |
| 21 | /etc/hosts.allow r, |
| 22 | /etc/hosts.deny r, |
| 23 | /etc/xinetd.conf r, |
| 24 | /etc/xinetd.d r, |
| 25 | /etc/xinetd.d/* r, |
| 26 | /usr/sbin/xinetd rmix, |
| 27 | /var/log/xinetd.log w, |
| 28 | /{,var/}run/xinetd.pid rwl, |
| 29 | |
| 30 | /bin/netstat Px, |
| 31 | /bin/ps mix, |
| 32 | /sbin/linuxconf Px, |
| 33 | /usr/bin/cvs Px, |
| 34 | /usr/bin/fam Px, |
| 35 | /usr/bin/kotalkd Px, |
| 36 | /usr/bin/ktalkd Px, |
| 37 | /usr/bin/nrpe Px, |
| 38 | /usr/bin/rsync Px, |
| 39 | /usr/kerberos/sbin/ftpd Px, |
| 40 | /usr/kerberos/sbin/klogind Px, |
| 41 | /usr/kerberos/sbin/kshd Px, |
| 42 | /usr/kerberos/sbin/telnetd Px, |
| 43 | /usr/lib/amanda/amandad Px, |
| 44 | /usr/lib/amanda/amidxtaped Px, |
| 45 | /usr/lib/amanda/amindexd Px, |
| 46 | |
| 47 | /usr/lib64/cups/daemon/cups-lpd Px, |
| 48 | /usr/lib/cups/daemon/cups-lpd Px, |
| 49 | |
| 50 | /usr/sbin/dbskkd-cdb Px, |
| 51 | /usr/sbin/imapd Px, |
| 52 | /usr/sbin/in.comsat Px, |
| 53 | /usr/sbin/in.fingerd Px, |
| 54 | /usr/sbin/in.ftpd Px, |
| 55 | /usr/sbin/in.httpd-redir Px, |
| 56 | /usr/sbin/in.ntalkd Px, |
| 57 | /usr/sbin/in.rexecd Px, |
| 58 | /usr/sbin/in.rlogind Px, |
| 59 | /usr/sbin/in.rshd Px, |
| 60 | /usr/sbin/in.telnetd Px, |
| 61 | /usr/sbin/in.tftpd Px, |
| 62 | /usr/sbin/ipop2d Px, |
| 63 | /usr/sbin/ipop3d Px, |
| 64 | /usr/sbin/popper Px, |
| 65 | /usr/sbin/rsyncd Px, |
| 66 | /usr/sbin/swat Px, |
| 67 | /usr/sbin/tcpd Px, |
| 68 | /usr/sbin/vsftpd Px, |
| 69 | /usr/X11R6/bin/vnc_inetd_httpd Px, |
| 70 | /usr/X11R6/bin/Xvnc Px, |
| 71 | } |