From b7e1825b68b25bbbe64477b82bb5b3f636989b29 Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Oct 25 2005 19:20:56 +0000
Subject: privfd



---

diff --git a/refpolicy/policy/modules/services/portmap.te b/refpolicy/policy/modules/services/portmap.te
index 83b323a..80e2b5a 100644
--- a/refpolicy/policy/modules/services/portmap.te
+++ b/refpolicy/policy/modules/services/portmap.te
@@ -183,6 +183,8 @@ corenet_dontaudit_tcp_bind_all_reserved_ports(portmap_helper_t)
 corenet_dontaudit_udp_bind_all_reserved_ports(portmap_helper_t)
 corenet_tcp_connect_all_ports(portmap_helper_t)
 
+domain_dontaudit_use_wide_inherit_fd(portmap_helper_t)
+
 files_read_etc_files(portmap_helper_t)
 files_rw_generic_pids(portmap_helper_t)
 
diff --git a/refpolicy/policy/modules/system/logging.te b/refpolicy/policy/modules/system/logging.te
index 4f56da9..57313e1 100644
--- a/refpolicy/policy/modules/system/logging.te
+++ b/refpolicy/policy/modules/system/logging.te
@@ -194,6 +194,8 @@ dev_read_raw_memory(klogd_t)
 
 fs_getattr_all_fs(klogd_t)
 
+domain_use_wide_inherit_fd(klogd_t)
+
 files_create_pid(klogd_t,klogd_var_run_t)
 files_read_etc_runtime_files(klogd_t)
 # read /etc/nsswitch.conf