fix postgres.cil

2025-02-06 22:51:07 +02:00 · 2025-02-06 22:51:07 +02:00 · 2f2383d526
commit 2f2383d526
parent 4d4c70763f
1 changed files with 4 additions and 4 deletions
--- a/peertube-server/templates/cil/postgres.cil
+++ b/peertube-server/templates/cil/postgres.cil
@ -4,8 +4,8 @@
    (allow process process ( capability ( chown dac_override fowner fsetid kill net_bind_service setfcap setgid setpcap setuid sys_chroot )))

    (allow process postgresql_port_t ( tcp_socket (  name_bind )))
-    (allow process user_home_t ( dir ( add_name create getattr ioctl lock open read remove_name rmdir search setattr write )))
-    (allow process user_home_t ( file ( append create getattr ioctl lock map open read rename setattr unlink write )))
-    (allow process user_home_t ( fifo_file ( getattr read write append ioctl lock open )))
-    (allow process user_home_t ( sock_file ( append getattr open read write )))
+    (allow process default_t ( dir ( add_name create getattr ioctl lock open read remove_name rmdir search setattr write )))
+    (allow process default_t ( file ( append create getattr ioctl lock map open read rename setattr unlink write link)))
+    (allow process default_t ( fifo_file ( getattr read write append ioctl lock open )))
+    (allow process default_t ( sock_file ( append getattr open read write )))
 )