Try to keep track of good naming conventions

author: Sven Vermeulen <sven.vermeulen@siphos.be> 2011-08-16 23:07:00 +0000
committer: Sven Vermeulen <sven.vermeulen@siphos.be> 2011-08-16 23:07:00 +0000
commit: 95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f (patch)
tree: 4d103cff6ffec314f1a568fd312a5df4da663db9 /txt
parent: Fixed small typo. No version bump. (diff)
download: hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.tar.gz
hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.tar.bz2
hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.zip
1 files changed, 10 insertions, 0 deletions
diff --git a/txt/selinux-naming b/txt/selinux-naming
new file mode 100644
index 0000000..ea12ccf
--- /dev/null
+++ b/txt/selinux-naming
@@ -0,0 +1,10 @@
+Quick excerpts from #selinux
+
+Interface naming
+  _domtrans is internal, only allows domain transition
+  _run is for root (system administrative) support, like
+    shutdown_run(sysadm_r, sysadm_t)
+  _role is for applications, like
+    mozilla_role(staff_r, staff_t)
+  _admin is to allow administration of a domain, including transitioning through the labeled init scripts, like
+    postfix_admin(sysadm_r, sysadm_t)
author	Sven Vermeulen <sven.vermeulen@siphos.be>	2011-08-16 23:07:00 +0000
committer	Sven Vermeulen <sven.vermeulen@siphos.be>	2011-08-16 23:07:00 +0000
commit	95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f (patch)
tree	4d103cff6ffec314f1a568fd312a5df4da663db9 /txt
parent	Fixed small typo. No version bump. (diff)
download	hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.tar.gz hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.tar.bz2 hardened-docs-95a9242ecd7e7a0c00df5e9c64043df1e48f7b3f.zip