1 2 3 4 5 6 7 8 9 10 11 12 13
module omoracle 1.0; require { type syslogd_t; type port_t; class process { execstack execmem }; class tcp_socket name_connect; } #============= syslogd_t ============== allow syslogd_t port_t:tcp_socket name_connect; allow syslogd_t self:process { execstack execmem };