- Allow passenger to connect http port

author: Miroslav Grepl <mgrepl@redhat.com> 2010-09-09 16:36:49 +0200
committer: Miroslav Grepl <mgrepl@redhat.com> 2010-09-09 16:36:49 +0200
commit: 276bd344bcc453764d82d97a32b6cabd407eb4bc (patch)
tree: 9ca55e75265b02c872538b31023c88c2115d7a0a
parent: 21f78e94460589856b32b377f8b4887b30fe0642 (diff)
download: test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.tar.gz
test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.tar.xz
test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/passenger.te b/passenger.te
index fef2c83..3710927 100644
--- a/passenger.te
+++ b/passenger.te
@@ -58,6 +58,8 @@ manage_files_pattern(passenger_t, passenger_var_lib_t, passenger_var_lib_t)
 kernel_read_system_state(passenger_t)
 kernel_read_kernel_sysctls(passenger_t)
 
+corenet_tcp_connect_http_port(passenger_t)
+
 corecmd_exec_bin(passenger_t)
 corecmd_exec_shell(passenger_t)
 
@@ -69,6 +71,8 @@ auth_use_nsswitch(passenger_t)
 
 miscfiles_read_localization(passenger_t)
 
+userdom_dontaudit_use_user_terminals(passenger_t)
+
 optional_policy(`
 	apache_append_log(passenger_t)
 	apache_read_sys_content(passenger_t)
author	Miroslav Grepl <mgrepl@redhat.com>	2010-09-09 16:36:49 +0200
committer	Miroslav Grepl <mgrepl@redhat.com>	2010-09-09 16:36:49 +0200
commit	276bd344bcc453764d82d97a32b6cabd407eb4bc (patch)
tree	9ca55e75265b02c872538b31023c88c2115d7a0a
parent	21f78e94460589856b32b377f8b4887b30fe0642 (diff)
download	test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.tar.gz test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.tar.xz test_policy_modules-276bd344bcc453764d82d97a32b6cabd407eb4bc.zip