There are many domains that have write access to etc_t files. Along with modifying a host of configuration files you can also modify things like /etc/bashrc which would then let you run code as an admin user when they logged in.
We need to review who has write access to etc_t and create custom types if the domains only need access to specific files.
There are many domains that have write access to etc_t files. Along with modifying a host of configuration files you can also modify things like /etc/bashrc which would then let you run code as an admin user when they logged in.
We need to review who has write access to etc_t and create custom types if the domains only need access to specific files.