WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-03-20 03:57:02 +08:00
Code Issues Packages Projects Releases Wiki Activity

Zabbix/Postfix: Rules for postqueue using tmpfs

Browse Source 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
This commit is contained in:
Greg Sutcliffe
2025-09-26 12:24:21 +01:00
parent 5957d2c832
commit 144066c8f4
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
roles/base/files/postfix/zabbix-selinux.te
View File

@@ -1,10 +1,11 @@
module zabbix_sendmail 1.8;
module zabbix_sendmail 1.9;
require {
type sendmail_exec_t;
type zabbix_agent_t;
type bin_t;
type etc_t;
type devlog_t;
type kernel_t;
type postfix_etc_t;
type postfix_master_t;
@@ -33,6 +34,7 @@ allow zabbix_agent_t etc_t:lnk_file read;
allow zabbix_agent_t postfix_etc_t:file { read open };
# Allow it actually read the mail queue
allow zabbix_agent_t devlog_t:sock_file write;
allow zabbix_agent_t kernel_t:unix_stream_socket connectto;
allow zabbix_agent_t postfix_master_t:unix_stream_socket connectto;
allow zabbix_agent_t postfix_public_t:sock_file write;