test if deny rules are implemented/recognized
The version 3.6 of SELinux userspace brings a new policy feature
called deny rules. Purpose of this basic test is to find out if
the deny rules function as expected.
The automated test covers the following scenarios:
* file read prevention
* file execution prevention
* file removal prevention
* directory search prevention
* process ptrace prevention
* kernel module load prevention