swissmakers_gmbh/fail2ban-ui
12
1
Fork 0
mirror of https://github.com/swissmakers/fail2ban-ui.git synced 2026-04-11 13:47:05 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
a372ce807889a803dc6564d5955bdccb3e4066b4
fail2ban-ui/deployment/fail2ban-curl-allow.te

23 lines
656 B
Plaintext
Raw Normal View History

Update of the fail2ban-curl-allow module to version 1.1 with additional permissions for accessing directories and files in etc_t, var_log_t, and var_run_t.
2025-08-26 21:40:13 +02:00
# deployment/fail2ban-curl-allow.te
module fail2ban-curl-allow 1.1;
Add SELinux Module, to allow fail2ban communication via localhost on port 8080
2025-01-29 23:49:04 +01:00
require {
Update of the fail2ban-curl-allow module to version 1.1 with additional permissions for accessing directories and files in etc_t, var_log_t, and var_run_t.
2025-08-26 21:40:13 +02:00
type fail2ban_t;
type http_cache_port_t;
type var_run_t;
type etc_t;
type var_log_t;
class tcp_socket name_connect;
class file { read write open execute };
class dir { search read };
Add SELinux Module, to allow fail2ban communication via localhost on port 8080
2025-01-29 23:49:04 +01:00
}
#============= fail2ban_t ==============
allow fail2ban_t http_cache_port_t:tcp_socket name_connect;
Update of the fail2ban-curl-allow module to version 1.1 with additional permissions for accessing directories and files in etc_t, var_log_t, and var_run_t.
2025-08-26 21:40:13 +02:00
# Zusätzliche benötigte Berechtigungen
allow fail2ban_t etc_t:file { read open };
allow fail2ban_t var_log_t:file { read open };
allow fail2ban_t var_run_t:file { read write open };
allow fail2ban_t var_run_t:dir search;
allow fail2ban_t etc_t:dir search;
Reference in New Issue Copy Permalink