A trivial question. There is some reason why the SELinux ref policy provides only for ftp access to users' home or to a type accessible to other demons confined? Why it is not possible to define a ftp_data_t also ? The motivation is simple : whay i have to provide ftp access AND also permit other daemon to access ? IMHO, it is not the best as Least privilege.
Thanks in advance
