Novell LINUX ENTERPRISE DESKTOP 11 - SECURITY GUIDE 17-03-2009 Manual page 292

Example 25.1 Example phpsysinfo Hat
/usr/sbin/httpd2-prefork {
...
^phpsysinfo {
#include <abstractions/bash>
#include <abstractions/nameservice>
/bin/basename
/bin/bash
/bin/df
/bin/grep
/bin/mount
/bin/sed
/dev/bus/usb/
/dev/bus/usb/**
/dev/null
/dev/tty
/dev/urandom
/etc/SuSE-release
/etc/ld.so.cache
/etc/lsb-release
/etc/lsb-release.d/
/lib/ld-2.6.1.so
/proc/**
/sbin/lspci
/srv/www/htdocs/phpsysinfo/**
/sys/bus/pci/**
/sys/bus/scsi/devices/
/sys/devices/**
/usr/bin/cut
/usr/bin/getopt
/usr/bin/head
/usr/bin/lsb_release
/usr/bin/lsscsi
/usr/bin/tr
/usr/bin/who
/usr/lib/lib*so*
/usr/lib/locale/**
/usr/sbin/lsusb
/usr/share/locale/**
/usr/share/pci.ids
/usr/share/usb.ids
/var/log/apache2/access_log
/var/run/utmp
}
}
280 Security Guide
ixr,
ixr,
ixr,
ixr,
Ux,
ixr,
r,
r,
w,
rw,
r,
r,
r,
r,
r,
ixr,
r,
ixr,
r,
r,
r,
r,
ixr,
ixr,
ixr,
ixr,
ixr,
ixr,
ixr,
mr,
r,
ixr,
r,
r,
r,
w,
kr,