From 276bd344bcc453764d82d97a32b6cabd407eb4bc Mon Sep 17 00:00:00 2001
From: Miroslav Grepl <mgrepl@redhat.com>
Date: Thu, 9 Sep 2010 16:36:49 +0200
Subject: - Allow passenger to connect http port

---
 passenger.te | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/passenger.te b/passenger.te
index fef2c83..3710927 100644
--- a/passenger.te
+++ b/passenger.te
@@ -58,6 +58,8 @@ manage_files_pattern(passenger_t, passenger_var_lib_t, passenger_var_lib_t)
 kernel_read_system_state(passenger_t)
 kernel_read_kernel_sysctls(passenger_t)
 
+corenet_tcp_connect_http_port(passenger_t)
+
 corecmd_exec_bin(passenger_t)
 corecmd_exec_shell(passenger_t)
 
@@ -69,6 +71,8 @@ auth_use_nsswitch(passenger_t)
 
 miscfiles_read_localization(passenger_t)
 
+userdom_dontaudit_use_user_terminals(passenger_t)
+
 optional_policy(`
 	apache_append_log(passenger_t)
 	apache_read_sys_content(passenger_t)
-- 
cgit