SMB and CIFS client/server programs for UNIX and name Service Switch daemon for resolving names from Windows NT servers.
false
Allow samba to modify public files used for public file transfer services. Files/Directories must be labeled public_content_rw_t.
false
Allow samba to act as the domain controller, add users, groups and change passwords.
false
Allow samba to share users home directories.
false
Allow samba to share any file/directory read only.
false
Allow samba to share any file/directory read/write.
false
Allow samba to run unconfined scripts
false
Allow samba to export NFS volumes.
Allow the specified domain to append to samba's log files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Execute samba net in the samba_net domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
Execute smbmount in the smbmount domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
Execute winbind_helper in the winbind_helper domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
Do not audit attempts to use file descriptors from samba.
Parameter: | Description: |
---|---|
domain |
Domain to not audit. |
Execute samba log in the caller domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
Allow the specified domain to read and write samba /var files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read samba configuration files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read samba's log files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read samba's secrets.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read samba /var files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read the winbind pid files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Execute samba net in the samba_net domain, and allow the specified role the samba_net domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
role |
The role to be allowed the samba_net domain. |
terminal |
The type of the terminal allow the samba_net domain to use. |
Execute smbmount interactively and do a domain transition to the smbmount domain.
Parameter: | Description: |
---|---|
domain |
Domain allowed acces. |
role |
The role to be allowed the smbmount domain. |
terminal |
The type of the terminal allow the smbmount domain to use. |
Execute winbind_helper in the winbind_helper domain, and allow the specified role the winbind_helper domain.
Parameter: | Description: |
---|---|
domain |
The type of the process performing this action. |
role |
The role to be allowed the winbind_helper domain. |
terminal |
The type of the terminal allow the winbind_helper domain to use. |
Allow the specified domain to read and write samba configuration files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read and write to smbmount tcp sockets.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to read and write samba /var files.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to search samba /var directories.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Connect to winbind.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
Allow the specified domain to write to smbmount tcp sockets.
Parameter: | Description: |
---|---|
domain |
Domain allowed access. |
The per role template for the samba module.
This template allows smbd to manage files in a user home directory, creating files with the correct type.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
Parameter: | Description: |
---|---|
userdomain_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). |