diff --git a/sbd.te b/sbd.te

index 0ba6d491f..927cb8f64 100644

--- a/sbd.te

+++ b/sbd.te

@@ -37,6 +37,8 @@ manage_files_pattern(sbd_t, sbd_tmpfs_t, sbd_tmpfs_t)

 manage_dirs_pattern(sbd_t, sbd_tmpfs_t, sbd_tmpfs_t)

 fs_tmpfs_filetrans(sbd_t, sbd_tmpfs_t, { file dir })

+auth_use_nsswitch(sbd_t)

+

 kernel_read_system_state(sbd_t)

 kernel_dgram_send(sbd_t)

 kernel_rw_all_sysctls(sbd_t)

diff --git a/tmpreaper.te b/tmpreaper.te

index a00757adc..0aca5b5fb 100644

--- a/tmpreaper.te

+++ b/tmpreaper.te

@@ -40,18 +40,27 @@ init_nnp_daemon_domain(tmpreaper_t)

 # Local Policy

 #

-allow tmpreaper_t self:capability { dac_override dac_read_search fowner };

+allow tmpreaper_t self:capability { dac_override dac_read_search fowner sys_ptrace };

 allow tmpreaper_t self:fifo_file rw_fifo_file_perms;

 kernel_list_unlabeled(tmpreaper_t)

 kernel_read_system_state(tmpreaper_t)

+kernel_read_network_state(tmpreaper_t)

 kernel_delete_unlabeled(tmpreaper_t)

+kernel_dontaudit_getattr_all_sysctls(tmpreaper_t)

 dev_read_urand(tmpreaper_t)

+dev_getattr_all_chr_files(tmpreaper_t)

+dev_getattr_all_blk_files(tmpreaper_t)

+dev_getattr_mtrr_dev(tmpreaper_t)

 corecmd_exec_bin(tmpreaper_t)

 corecmd_exec_shell(tmpreaper_t)

+domain_read_all_domains_state(tmpreaper_t)

+domain_getattr_all_sockets(tmpreaper_t)

+domain_getattr_all_pipes(tmpreaper_t)

+

 fs_getattr_xattr_fs(tmpreaper_t)

 fs_list_all(tmpreaper_t)

 fs_setattr_tmpfs_dirs(tmpreaper_t)