Layer: contrib

Module: mta

Interfaces Templates

Description:

Policy common to all email tranfer agents.

Interfaces:

mta_agent_executable( type )
Summary

Make the specified type a MTA executable file.

Parameters
Parameter:Description:
type

Type to be used as a mail client.

mta_append_home( domain )
Summary

ALlow domain to append mail content in the homedir

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_append_spool( domain )
Summary

Create, read, and write the mail spool.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_delete_spool( domain )
Summary

Delete from the mail spool.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_dontaudit_getattr_spool_files( domain )
Summary

Do not audit attempts to get the attributes of mail spool files.

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_dontaudit_leaks_system_mail( domain )
Summary

Dontaudit read and write an leaked file descriptors

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_dontaudit_read_spool_symlinks( domain )
Summary

Do not audit attempts to read a symlink in the mail spool.

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_dontaudit_rw_delivery_tcp_sockets( domain )
Summary

Do not audit attempts to read and write TCP sockets of mail delivery domains.

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_dontaudit_rw_queue( domain )
Summary

Do not audit attempts to read and write the mail queue.

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_etc_filetrans_aliases( domain , name )
Summary

Type transition files created in /etc to the mail address aliases type.

Parameters
Parameter:Description:
domain

Domain allowed access.

name

The name of the object being created.

mta_filetrans_admin_home_content( domain )
Summary

create mail content in the in the /root directory with an correct label.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_filetrans_aliases( domain , domain )
Summary

Type transition files created in calling dir to the mail address aliases type.

Parameters
Parameter:Description:
domain

Domain allowed access.

domain

Directory to transition on.

mta_filetrans_home_content( domain )
Summary

Transition to mta named home content

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_filetrans_named_content( domain )
Summary

Transition to mta named content

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_getattr_spool( domain )
Summary

Get the attributes of mail spool files.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_kill_system_mail( domain )
Summary

Send system mail client a kill signal

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_kill_user_agent( domain )
Summary

Send all user mail client a kill signal

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_list_queue( domain )
Summary

List the mail queue.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_mailserver( type , entry_point )
Summary

Make the specified domain usable for a mail server.

Parameters
Parameter:Description:
type

Type to be used as a mail server domain.

entry_point

Type of the program to be used as an entry point to this domain.

mta_mailserver_delivery( domain )
Summary

Make a type a mailserver type used for delivering mail to local users.

Parameters
Parameter:Description:
domain

Mail server domain type used for delivering mail.

mta_mailserver_sender( domain )
Summary

Make a type a mailserver type used for sending mail.

Parameters
Parameter:Description:
domain

Mail server domain type used for sending mail.

mta_mailserver_user_agent( domain )
Summary

Make a type a mailserver type used for sending mail on behalf of local users to the local mail spool.

Parameters
Parameter:Description:
domain

Mail server domain type used for sending local mail.

mta_manage_aliases( domain )
Summary

Create, read, write, and delete mail address aliases.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_manage_config( domain )
Summary

Manage mail server configuration.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_manage_home_rw( domain )
Summary

Allow domain to manage mail content in the homedir

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_manage_queue( domain )
Summary

Create, read, write, and delete mail queue files.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_manage_spool( domain )
Summary

Create, read, write, and delete mail spool files.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_aliases( domain )
Summary

Read mail address aliases.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_config( domain )
Summary

Read mail server configuration.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_home( domain )
Summary

ALlow domain to read mail content in the homedir

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_home_rw( domain )
Summary

ALlow domain to read mail content in the homedir

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_queue( domain )
Summary

Read the mail queue.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_sendmail_bin( domain )
Summary

Read sendmail binary.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_read_spool( domain )
Summary

Read the mail spool.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_role( role , domain )
Summary

Role access for mta

Parameters
Parameter:Description:
role

Role allowed access

domain

User domain for the role

mta_role_access_system_mail( role )
Summary

Allow role to access system_mail_t.

Parameters
Parameter:Description:
role

Role allowed access.

mta_rw_aliases( domain )
Summary

Read and write mail aliases.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_rw_delivery_tcp_sockets( domain )
Summary

Allow attempts to read and write TCP sockets of mail delivery domains.

Parameters
Parameter:Description:
domain

Domain to not audit.

mta_rw_spool( domain )
Summary

Read and write the mail spool.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_rw_user_mail_stream_sockets( domain )
Summary

Read and write unix domain stream sockets of user mail domains.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_search_queue( domain )
Summary

Search mail queue dirs.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_send_mail( domain )
Summary

Send mail from the system.

Parameters
Parameter:Description:
domain

Domain allowed to transition.

mta_sendmail_access_check( domain )
Summary

Check whether sendmail executable files are executable.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_sendmail_domtrans( source_domain , target_domain )
Summary

Execute send mail in a specified domain.

Description

Execute send mail in a specified domain.

No interprocess communication (signals, pipes, etc.) is provided by this interface since the domains are not owned by this module.

Parameters
Parameter:Description:
source_domain

Domain allowed to transition.

target_domain

Domain to transition to.

mta_sendmail_exec( domain )
Summary

Execute sendmail in the caller domain.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_sendmail_mailserver( domain )
Summary

Modified mailserver interface for sendmail daemon use.

Description

A modified MTA mail server interface for the sendmail program. It's design does not fit well with policy, and using the regular interface causes a type_transition conflict if direct running of init scripts is enabled.

This interface should most likely only be used by the sendmail policy.

Parameters
Parameter:Description:
domain

The type to be used for the mail server.

mta_signal_system_mail( domain )
Summary

Send system mail client a signal

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_signal_user_agent( domain )
Summary

Send all user mail client a signal

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_spool_filetrans( domain , private type , object , name )
Summary

Create private objects in the mail spool directory.

Parameters
Parameter:Description:
domain

Domain allowed access.

private type

The type of the object to be created.

object

The object class of the object being created.

name

The name of the object being created.

mta_spool_filetrans_queue( domain , private type , object , name )
Summary

Create private objects in the mqueue spool directory.

Parameters
Parameter:Description:
domain

Domain allowed access.

private type

The type of the object to be created.

object

The object class of the object being created.

name

The name of the object being created.

mta_stub( domain )
Summary

MTA stub interface. No access allowed.

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_system_content( type )
Summary

Make the specified type by a system MTA.

Parameters
Parameter:Description:
type

Type to be used as a mail client.

mta_tcp_connect_all_mailservers( domain )
Summary

Connect to all mail servers over TCP. (Deprecated)

Parameters
Parameter:Description:
domain

Domain allowed access.

mta_write_config( domain )
Summary

write mail server configuration.

Parameters
Parameter:Description:
domain

Domain allowed access.

Return

Templates:

mta_base_mail_template( domain_prefix )
Summary

Basic mail transfer agent domain template.

Description

This template creates a derived domain which is a email transfer agent, which sends mail on behalf of the user.

This is the basic types and rules, common to the system agent and user agents.

Parameters
Parameter:Description:
domain_prefix

The prefix of the domain (e.g., user is the prefix for user_t).

Return