diff --git a/sbd.te b/sbd.te
index 0ba6d491f..927cb8f64 100644
--- a/sbd.te
+++ b/sbd.te
@@ -37,6 +37,8 @@ manage_files_pattern(sbd_t, sbd_tmpfs_t, sbd_tmpfs_t)
 manage_dirs_pattern(sbd_t, sbd_tmpfs_t, sbd_tmpfs_t)
 fs_tmpfs_filetrans(sbd_t, sbd_tmpfs_t, { file dir })
 
+auth_use_nsswitch(sbd_t)
+
 kernel_read_system_state(sbd_t)
 kernel_dgram_send(sbd_t)
 kernel_rw_all_sysctls(sbd_t)
diff --git a/tmpreaper.te b/tmpreaper.te
index a00757adc..0aca5b5fb 100644
--- a/tmpreaper.te
+++ b/tmpreaper.te
@@ -40,18 +40,27 @@ init_nnp_daemon_domain(tmpreaper_t)
 # Local Policy
 #
 
-allow tmpreaper_t self:capability { dac_override dac_read_search fowner };
+allow tmpreaper_t self:capability { dac_override dac_read_search fowner sys_ptrace };
 allow tmpreaper_t self:fifo_file rw_fifo_file_perms;
 
 kernel_list_unlabeled(tmpreaper_t)
 kernel_read_system_state(tmpreaper_t)
+kernel_read_network_state(tmpreaper_t)
 kernel_delete_unlabeled(tmpreaper_t)
+kernel_dontaudit_getattr_all_sysctls(tmpreaper_t)
 
 dev_read_urand(tmpreaper_t)
+dev_getattr_all_chr_files(tmpreaper_t)
+dev_getattr_all_blk_files(tmpreaper_t)
+dev_getattr_mtrr_dev(tmpreaper_t)
 
 corecmd_exec_bin(tmpreaper_t)
 corecmd_exec_shell(tmpreaper_t)
 
+domain_read_all_domains_state(tmpreaper_t)
+domain_getattr_all_sockets(tmpreaper_t)
+domain_getattr_all_pipes(tmpreaper_t)
+
 fs_getattr_xattr_fs(tmpreaper_t)
 fs_list_all(tmpreaper_t)
 fs_setattr_tmpfs_dirs(tmpreaper_t)