[DSE-Dev] Bug#941621: Mention where to find the standard perm_map for seinfoflow
Christian Göttsche
cgzones at googlemail.com
Thu Oct 3 01:02:49 BST 2019
Package: setools
Version: 4.2.2-1+b1
Severity: wishlist
Maybe it would be helpful to mention in the man page of seinfoflow
where to find the standard permission map.
(It is at /var/lib/sepolgen/perm_map in package python3-sepolgen)
--- seinfoflow.1.bak 2019-10-03 01:54:49.426056708 +0200
+++ seinfoflow.1 2019-10-03 02:01:27.382966149 +0200
@@ -18,6 +18,11 @@
If no policy file is provided, \fBseinfoflow\fR will search for the
policy running on the current
system. If no policy can be found, \fBseinfoflow\fR will print an
error message and exit.
+.SH PERMISSION MAP
+.PP
+A file containing mappings of object permissions for object classes.
These mappings are the basis on how to compute the infoflow between
types.
+On Debian a standard permission map can be found when the package
\fBpython3-sepolgen\fR is installed at
\fI/var/lib/sepolgen/perm_map\fR.
+
.SH OPTIONS
.SS Analysis Settings
.IP "-p POLICY"
More information about the SELinux-devel
mailing list