nrpe base selinux policy

nrpe_nagios.te

module nrpe_nagios 1.0;

require {
	type var_run_t;
	type configfs_t;
	type pstore_t;
	type nagios_etc_t;
	type mongod_var_lib_t;
	type default_t;
	type cgroup_t;
	type httpd_sys_rw_content_t;
	type sysctl_fs_t;
	type nrpe_t;
	type hugetlbfs_t;
	type binfmt_misc_fs_t;
	class dir { getattr search };
	class file { execute execute_no_trans getattr ioctl open read };
}

#============= nrpe_t ==============

#!!!! This avc is allowed in the current policy
allow nrpe_t binfmt_misc_fs_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t cgroup_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t configfs_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t default_t:file { execute execute_no_trans getattr ioctl open read };

#!!!! This avc is allowed in the current policy
allow nrpe_t httpd_sys_rw_content_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t hugetlbfs_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t mongod_var_lib_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t nagios_etc_t:file { getattr open read };

#!!!! This avc is allowed in the current policy
allow nrpe_t pstore_t:dir getattr;

#!!!! This avc is allowed in the current policy
allow nrpe_t sysctl_fs_t:dir search;

#!!!! This avc is allowed in the current policy
allow nrpe_t var_run_t:file read;