Policy for Mozilla and related web browsers
false
Allow mozilla plugin domain to bind unreserved tcp/udp ports.
true
Allow mozilla plugin domain to connect to the network using TCP.
false
Allow mozilla plugin to use Bluejeans.
false
Allow mozilla plugin to support GPS.
false
Allow mozilla plugin to support spice protocols.
false
Allow confined web browsers to read home directory content
Send and receive messages from mozilla over dbus.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Run mozilla in the mozilla domain.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed to transition. |
Execute a domain transition to run mozilla_plugin.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Execute a mozilla_exec_t in the specified domain.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed to transition. |
| target_domain |
The type of the new process. |
Dontaudit attempts to write mozilla home directory content
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Dontaudit attempts to read/write mozilla home directory content
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Execute mozilla home directory content.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Execmod mozilla home directory content.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Create mozilla content in the user home directory with an correct label.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Delete mozilla_plugin tmpfs files
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access |
Dontaudit read/write to a mozilla_plugin leaks
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Dontaudit generict ipc read/write to a mozilla_plugin
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Dontaudit read/write to a mozilla_plugin tmp files.
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Create, read, write, and delete mozilla_plugin rw files.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
read mozilla_plugin rw files.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Allow the domain to read mozilla_plugin state files in /proc.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Read mozilla_plugin tmpfs files
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access |
Allow generict ipc read/write to a mozilla_plugin
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Allow read/write to a mozilla_plugin tmp files.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Read/Write mozilla_plugin tmpfs files
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access |
Read mozilla home directory content
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Role access for mozilla
| Parameter: | Description: |
|---|---|
| role |
Role allowed access |
| domain |
User domain for the role |
Execute qemu unconfined programs in the role.
| Parameter: | Description: |
|---|---|
| role |
The role to allow the mozilla_plugin domain. |
Execute mozilla_plugin in the mozilla_plugin domain, and allow the specified role the mozilla_plugin domain.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access |
| role |
The role to be allowed the mozilla_plugin domain. |
read/write mozilla per user tcp_socket
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Write mozilla home directory content
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |