Skip to content

Commit

Permalink
remove assess to user_home_t from caddy container
Browse files Browse the repository at this point in the history
  • Loading branch information
karuboniru committed Jan 27, 2024
1 parent 464f0ea commit eb410e0
Showing 1 changed file with 0 additions and 3 deletions.
3 changes: 0 additions & 3 deletions cils/container_caddy.cil
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,6 @@
(blockinherit container)
(blockinherit net_container)
(allow process process ( capability ( net_bind_service )))

(allow process user_home_t ( dir ( watch getattr ioctl lock open read search )))
(allow process user_home_t ( file ( watch getattr ioctl lock open read )))

(allow process var_run_t ( sock_file ( write )))
(allow process cockpit_ws_t ( unix_stream_socket ( connectto )))
Expand Down

0 comments on commit eb410e0

Please sign in to comment.