|
Lines 98-105
Link Here
|
| 98 |
add_proc_object_acl(current_subject, "/etc/ld.so.preload", proc_object_mode_conv("r"), GR_FEXIST); |
98 |
add_proc_object_acl(current_subject, "/etc/ld.so.preload", proc_object_mode_conv("r"), GR_FEXIST); |
| 99 |
add_proc_object_acl(current_subject, "/etc/protocols", proc_object_mode_conv("r"), GR_FEXIST); |
99 |
add_proc_object_acl(current_subject, "/etc/protocols", proc_object_mode_conv("r"), GR_FEXIST); |
| 100 |
add_proc_object_acl(current_subject, "/dev/urandom", proc_object_mode_conv("r"), GR_FEXIST); |
100 |
add_proc_object_acl(current_subject, "/dev/urandom", proc_object_mode_conv("r"), GR_FEXIST); |
|
|
101 |
#ifdef __amd64__ |
| 102 |
add_proc_object_acl(current_subject, "/lib32", proc_object_mode_conv("rx"), GR_FEXIST); |
| 103 |
add_proc_object_acl(current_subject, "/usr/lib32", proc_object_mode_conv("rx"), GR_FEXIST); |
| 104 |
#else |
| 101 |
add_proc_object_acl(current_subject, "/lib", proc_object_mode_conv("rx"), GR_FEXIST); |
105 |
add_proc_object_acl(current_subject, "/lib", proc_object_mode_conv("rx"), GR_FEXIST); |
| 102 |
add_proc_object_acl(current_subject, "/usr/lib", proc_object_mode_conv("rx"), GR_FEXIST); |
106 |
add_proc_object_acl(current_subject, "/usr/lib", proc_object_mode_conv("rx"), GR_FEXIST); |
|
|
107 |
#endif |
| 103 |
add_proc_object_acl(current_subject, "/lib64", proc_object_mode_conv("rx"), GR_FEXIST); |
108 |
add_proc_object_acl(current_subject, "/lib64", proc_object_mode_conv("rx"), GR_FEXIST); |
| 104 |
add_proc_object_acl(current_subject, "/usr/lib64", proc_object_mode_conv("rx"), GR_FEXIST); |
109 |
add_proc_object_acl(current_subject, "/usr/lib64", proc_object_mode_conv("rx"), GR_FEXIST); |
| 105 |
add_proc_object_acl(current_subject, gradm_name, proc_object_mode_conv("x"), GR_FEXIST); |
110 |
add_proc_object_acl(current_subject, gradm_name, proc_object_mode_conv("x"), GR_FEXIST); |
