Layer: system

Module: logging

Description:

Policy for the kernel message logger and system logging daemon.

Interfaces:

logging_append_all_logs( domain )
Summary

Append to all log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_domtrans_auditctl( domain )
Summary

Execute auditctl in the auditctl domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_domtrans_auditd( domain )
Summary

Execute auditd in the auditd domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_domtrans_syslog( domain )
Summary

Execute syslogd in the syslog domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_dontaudit_getattr_all_logs( domain )
Summary

Do not audit attempts to get the atttributes of any log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_dontaudit_search_logs( domain )
Summary

Do not audit attempts to search the var log directory.

Parameters
Parameter:Description:Optional:
domain

Domain not to audit.

No
logging_exec_all_logs( domain )
Summary

Execute all log files in the caller domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_list_logs( domain )
Summary

List the contents of the generic log directory (/var/log).

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_log_file( file_type )
Summary

Make the specified type a file used for logs.

Parameters
Parameter:Description:Optional:
file_type

Type of the file to be used as a log.

No
logging_log_filetrans( domain , private type , object )
Summary

Create an object in the log directory, with a private type using a type transition.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
private type

The type of the object to be created.

No
object

The object class of the object being created.

No
logging_manage_all_logs( domain )
Summary

Create, read, write, and delete all log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_manage_audit_config( domain )
Summary

Manage the auditd configuration files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_manage_audit_log( domain )
Summary

Manage the audit log.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_manage_generic_logs( domain )
Summary

Create, read, write, and delete generic log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_read_all_logs( domain )
Summary

Read all log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_read_audit_config( domain )
Summary

Read the auditd configuration files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_read_audit_log( domain )
Summary

Read the audit log.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_read_generic_logs( domain )
Summary

Read generic log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_run_auditctl( domain , role , terminal )
Summary

Execute auditctl in the auditctl domain, and allow the specified role the auditctl domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
role

The role to be allowed the auditctl domain.

No
terminal

The type of the terminal allow the auditctl domain to use.

No
logging_run_auditd( domain , role , terminal )
Summary

Execute auditd in the auditd domain, and allow the specified role the auditd domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
role

The role to be allowed the auditd domain.

No
terminal

The type of the terminal allow the auditd domain to use.

No
logging_rw_generic_log_dirs( domain )
Summary

Read and write the generic log directory (/var/log).

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_rw_generic_logs( domain )
Summary

Read and write generic log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_search_logs( domain )
Summary

Allows the domain to open a file in the log directory, but does not allow the listing of the contents of the log directory.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_send_audit_msg( domain )
Summary

Send audit messages

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_send_syslog_msg( domain )
Summary

Send system log messages.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_set_audit( domain )
Summary

Set up audit

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_set_auditctl( domain )
Summary

Set audit control rules

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_set_loginuid( domain )
Summary

Set login uid

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_stream_connect_auditd( domain )
Summary

Connect to auditdstored over an unix stream socket.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
logging_write_generic_logs( domain )
Summary

Write generic log files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
Return