From 7b232907ffa20206c57e362cd8278eaefa7948d4 Mon Sep 17 00:00:00 2001 From: Nathan Kinder Date: Tue, 13 Jul 2010 11:28:07 -0700 Subject: Bug 613833 - Allow dirsrv_t to bind to rpc ports The slapi-nis plug-in needs the dirsrv SELinux policy to allow ns-slapd to bind to rpc ports. This adds the appropriate macros to the dirsrv policy. --- selinux/dirsrv.te | 2 ++ 1 file changed, 2 insertions(+) diff --git a/selinux/dirsrv.te b/selinux/dirsrv.te index ddcc2f1e..e24ca933 100644 --- a/selinux/dirsrv.te +++ b/selinux/dirsrv.te @@ -147,6 +147,8 @@ corenet_tcp_sendrecv_generic_node(dirsrv_t) corenet_tcp_sendrecv_all_ports(dirsrv_t) corenet_tcp_bind_all_nodes(dirsrv_t) corenet_tcp_bind_ldap_port(dirsrv_t) +corenet_tcp_bind_all_rpc_ports(dirsrv_t) +corenet_udp_bind_all_rpc_ports(dirsrv_t) corenet_tcp_connect_all_ports(dirsrv_t) corenet_sendrecv_ldap_server_packets(dirsrv_t) corenet_sendrecv_all_client_packets(dirsrv_t) -- cgit