1 # Last Modified: Wed Jan 18 10:55:22 2012
2 # ------------------------------------------------------------------
4 # Copyright (C) 2002-2005 Novell/SUSE
6 # This program is free software; you can redistribute it and/or
7 # modify it under the terms of version 2 of the GNU General Public
8 # License published by the Free Software Foundation.
10 # ------------------------------------------------------------------
11 # will need to revalidate this profile once we finish re-architecting
12 # the change_hat patch.
15 #include <tunables/global>
18 #include <abstractions/authentication>
19 #include <abstractions/base>
20 #include <abstractions/consoles>
21 #include <abstractions/nameservice>
22 #include <abstractions/wutmp>
25 capability audit_control,
27 capability dac_override,
31 capability net_bind_service,
34 capability sys_chroot,
35 capability sys_resource,
36 capability sys_tty_config,
53 /proc/*/oom_score_adj rw,
55 /tmp/ssh-*/agent.[0-9]* rwl,
60 /{,var/}run/sshd{,.init}.pid wl,
61 @{HOME}/.ssh/authorized_keys{,2} r,
63 @{PROC}/[0-9]*/loginuid w,
64 @{PROC}/[0-9]*/mounts r,
68 #include <abstractions/authentication>
69 #include <abstractions/consoles>
70 #include <abstractions/nameservice>
71 #include <abstractions/wutmp>
75 capability sys_tty_config,
80 /etc/default/passwd r,
84 /tmp/ssh-*/agent.[0-9]* rwl,
90 #include <abstractions/base>
107 #include <abstractions/base>
108 #include <abstractions/nameservice>
112 capability sys_chroot,
119 #include <abstractions/authentication>
120 #include <abstractions/base>
121 #include <abstractions/nameservice>
122 #include <abstractions/wutmp>
135 @{HOME}/.ssh/authorized_keys{,2} r,
136 @{PROC}/[0-9]*/mounts r,