SMB and CIFS client/server programs for UNIX and name Service Switch daemon for resolving names from Windows NT servers.
false
Allow samba to modify public files used for public file transfer services. Files/Directories must be labeled public_content_rw_t.
false
Allow samba to act as the domain controller, add users, groups and change passwords.
false
Allow samba to share users home directories.
false
Allow samba to share any file/directory read only.
false
Allow samba to share any file/directory read/write.
false
Allow samba to run unconfined scripts
false
Allow samba to export NFS volumes.
Allow the specified domain to append to samba's log files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Execute samba net in the samba_net domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
Execute smbmount in the smbmount domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
Execute winbind_helper in the winbind_helper domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
Do not audit attempts to use file descriptors from samba.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain to not audit. | No |
Execute samba log in the caller domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
Allow the specified domain to read and write samba /var files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read samba configuration files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read samba's log files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read samba's secrets.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read samba /var files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read the winbind pid files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Execute samba net in the samba_net domain, and allow the specified role the samba_net domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
| role |
The role to be allowed the samba_net domain. | No |
| terminal |
The type of the terminal allow the samba_net domain to use. | No |
Execute smbmount interactively and do a domain transition to the smbmount domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed acces. | No |
| role |
The role to be allowed the smbmount domain. | No |
| terminal |
The type of the terminal allow the smbmount domain to use. | No |
Execute winbind_helper in the winbind_helper domain, and allow the specified role the winbind_helper domain.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
The type of the process performing this action. | No |
| role |
The role to be allowed the winbind_helper domain. | No |
| terminal |
The type of the terminal allow the winbind_helper domain to use. | No |
Allow the specified domain to read and write samba configuration files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read and write to smbmount tcp sockets.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to read and write samba /var files.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to search samba /var directories.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Connect to winbind.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
Allow the specified domain to write to smbmount tcp sockets.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain |
Domain allowed access. | No |
The per role template for the samba module.
This template allows smbd to manage files in a user home directory, creating files with the correct type.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
| Parameter: | Description: | Optional: |
|---|---|---|
| userdomain_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). | No |