* spamassasin_domain()
@ 2005-11-30 18:38 Christopher J. PeBenito
0 siblings, 0 replies; only message in thread
From: Christopher J. PeBenito @ 2005-11-30 18:38 UTC (permalink / raw)
To: SELinux Mail List
In the spamassassin_domain() macro, there is the following block of
rules:
can_resolve($1_spamassassin_t)
# set tunable if you have spamassassin do DNS lookups
if (spamassasin_can_network) {
can_network($1_spamassassin_t)
allow $1_spamassassin_t port_type:tcp_socket name_connect;
}
This is confusing as the comment says the conditional toggles ability to
do DNS lookups, but right outside it has can_resolve(). It seems to me
that the can_resolve() should be inside the conditional, instead of what
is there. Does this seem reasonable?
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2005-11-30 18:41 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2005-11-30 18:38 spamassasin_domain() Christopher J. PeBenito
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).