Bug 613833 - Allow dirsrv_t to bind to rpc ports

The slapi-nis plug-in needs the dirsrv SELinux policy to allow ns-slapd to bind to rpc ports. This adds the appropriate macros to the dirsrv policy.
author: Nathan Kinder <nkinder@redhat.com> 2010-07-13 11:28:07 -0700
committer: Nathan Kinder <nkinder@redhat.com> 2010-07-13 11:28:07 -0700
commit: b7a93e6ba4e5c11585399078efd8ec67230afdbc (patch)
tree: 5680de2929553d29b7b07d03d6815f11360e9809 /selinux
parent: f1d509ec6f97fced6ad06b0fbe458444cd444825 (diff)
download: ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.tar.gz
ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.tar.xz
ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/selinux/dirsrv.te b/selinux/dirsrv.te
index ddcc2f1e..e24ca933 100644
--- a/selinux/dirsrv.te
+++ b/selinux/dirsrv.te
@@ -147,6 +147,8 @@ corenet_tcp_sendrecv_generic_node(dirsrv_t)
 corenet_tcp_sendrecv_all_ports(dirsrv_t)
 corenet_tcp_bind_all_nodes(dirsrv_t)
 corenet_tcp_bind_ldap_port(dirsrv_t)
+corenet_tcp_bind_all_rpc_ports(dirsrv_t)
+corenet_udp_bind_all_rpc_ports(dirsrv_t)
 corenet_tcp_connect_all_ports(dirsrv_t)
 corenet_sendrecv_ldap_server_packets(dirsrv_t)
 corenet_sendrecv_all_client_packets(dirsrv_t)
author	Nathan Kinder <nkinder@redhat.com>	2010-07-13 11:28:07 -0700
committer	Nathan Kinder <nkinder@redhat.com>	2010-07-13 11:28:07 -0700
commit	b7a93e6ba4e5c11585399078efd8ec67230afdbc (patch)
tree	5680de2929553d29b7b07d03d6815f11360e9809 /selinux
parent	f1d509ec6f97fced6ad06b0fbe458444cd444825 (diff)
download	ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.tar.gz ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.tar.xz ds-b7a93e6ba4e5c11585399078efd8ec67230afdbc.zip