matchportcon?
Daniel J Walsh
dwalsh at redhat.com
Tue Jul 16 15:31:23 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/16/2013 11:26 AM, Dominick Grift wrote:
> On Tue, 2013-07-16 at 11:12 -0400, Daniel J Walsh wrote:
>
>> Do you have a preference of what you would like to see?
>>
>> We could add
>>
>> sepolicy network -p 80 -P tcp
>>
>> And return only the tcp ports, but this would still get you
>>
>> 80: tcp http_port_t 80 80: tcp reserved_port_t 1-511
>
> Maybe also add a "-d | --direct" option that will instead only show the
> current applicable type ( in this case http_port_t )
>
Well maybe the code is actually broken. Since the kernel would not see port
80 as being reserved_port_t. It is only http_port_t, I believe.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlHlZ0sACgkQrlYvE4MpobNtQQCeJ5EjVcIfjNapVABMW7iz+k4P
j+YAoJl/fe8h1LXFt7f6BTGZKSK7KkAZ
=0o8m
-----END PGP SIGNATURE-----
More information about the selinux
mailing list