You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -87,7 +87,7 @@ in favor of using obj_trust with execute permission when writing rules.
.RE
.TP
.Bftype
This option takes the mime type of a file as an argument. If you wish to check the mime type of a file while writing rules, run the following command:
This option takes the mime type of a file as an argument. Mime is determined based on magic patterns files. Fapolicyd uses two precompiled magic files /usr/share/fapolicyd/fapolicyd-magic.mgc and /usr/share/misc/magic.mgc. To compile a magic file run the command \fBfile-C-m<magicfile>\fP. If you wish to check the mime type of a file while writing rules, run the following command:
.nf
.Bfapolicyd-cli\-\-ftype/path-to-file
Expand DownExpand Up
@@ -169,7 +169,7 @@ will run and compile all these component files into one master file, compiled.ru
.Bfagenrules
man page for more information.
When you are writing a rule for the execute permission, remember that the file to be executed is an
When you are writing a rule for the execute permission, remember that the file to be executed is an
.Bobject.
For example, you type ssh into the shell. The shell calls execve on /usr/bin/ssh. At that instant in time, ssh is the object that bash is working on. However, if you are blocking execution
