next up previous contents
Next: 8.8 Configuring access control Up: 8 Specification of Simplified Previous: 8.6 Configuring RBAC   Contents

Subsections

8.7 Configuring domain transition

8.7.1 domain_trans

  1. Syntax
    domain_trans parentdomain filename-of-entrypoint;
  2. Meaning
    This defines how domain is attached to process.
  3. Example
    {
    domain httpd_t;
    domain_trans initrc_t /sbin/httpd;
    ....
    Above means that when process(domain: initrc_t) executes /sbin/httpd, /sbin/httpd runs as httpd_t domain.
  4. Note
    Dynamic domain transition can be configured by omitting entry point. For example, {
    domain httpd_t;
    domain_trans initrc_t;

    means, dynamic domain transition from initrc_t to httpd_t is allowed.


2006-02-27