cyrus policy problem

Submit your RBAC policies or suggest policy improvements

cyrus policy problem

Postby p1kus » Tue Jul 04, 2006 9:55 am

cyrus policy problem
failure:
grsec: (default:D:/usr/cyrus/bin/lmtpd) denied mkdir of /var/spool/imap/stage. by /usr/cyrus/bin/lmtpd[lmtpd:25293] uid/euid:1009/1009 gid/egid:100/100, parent /usr/cyrus/bin/master[master:12164] uid/euid:1009/1009 gid/egid:100/100

policy:

subject /usr/cyrus/bin/lmtpd {
/dev/log rw
/var/spool/imap/ rw
}

gradm v2.1.9
grsecurity-2.1.9-2.6.16.19-200606041421

what i made wrong?
any help
p1kus
p1kus
 
Posts: 15
Joined: Tue Jul 04, 2006 7:06 am

cdl

Postby p1kus » Tue Jul 11, 2006 2:36 am

subject /usr/cyrus/bin/lmtpd {
/dev/log rw
/var/spool/imap/ rwcdl
}

# c -> allow creation of the file/directory
# d -> allow deletion of the file/directory
# l -> allow a hardlink at this path

p1kus
p1kus
 
Posts: 15
Joined: Tue Jul 04, 2006 7:06 am


Return to RBAC policy development