1 # ------------------------------------------------------------------
3 # Copyright (C) 2002-2005 Novell/SUSE
5 # This program is free software; you can redistribute it and/or
6 # modify it under the terms of version 2 of the GNU General Public
7 # License published by the Free Software Foundation.
9 # ------------------------------------------------------------------
10 # Note that this profile doesn't include any NetDomain rules; dhclient uses
11 # raw sockets, and thus cannot be confined with NetDomain
13 # Should these programs have their own domains?
17 # /usr/bin/uptime mrix,
18 # /usr/bin/vmstat mrix,
21 #include <tunables/global>
24 #include <abstractions/base>
25 #include <abstractions/bash>
26 #include <abstractions/nameservice>
28 network packet packet,
43 # following rule shouldn't work, self is a symlink
44 @{PROC}/self/status r,
50 /var/lib/dhcp/dhclient.leases rw,
51 /var/lib/dhcp/dhclient-*.leases rw,
55 /{,var/}run/dhclient.pid rw,
56 /{,var/}run/dhclient-*.pid rw,
60 # This one will need to be fleshed out depending on what the user is doing
61 /sbin/dhclient-script mrpix,
65 /etc/sysconfig/network/dhcp r,
66 /etc/sysconfig/network/scripts/functions.common r,
67 /etc/sysconfig/network/scripts/functions r,
69 /usr/lib/NetworkManager/nm-dhcp-client.action mrix,
71 /{,var/}run/nm-dhclient-*.conf r,