From b9be5cccf1df8f2de3048e527e731bc354f1adb7 Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Jun 18 2010 18:23:46 +0000 Subject: Shorewall patch from Dan Walsh. Shorewall execs hostname --- diff --git a/policy/modules/admin/shorewall.te b/policy/modules/admin/shorewall.te index e4b3773..a22e546 100644 --- a/policy/modules/admin/shorewall.te +++ b/policy/modules/admin/shorewall.te @@ -1,4 +1,4 @@ -policy_module(shorewall, 1.1.0) +policy_module(shorewall, 1.1.1) ######################################## # @@ -89,6 +89,10 @@ sysnet_domtrans_ifconfig(shorewall_t) userdom_dontaudit_list_user_home_dirs(shorewall_t) optional_policy(` + hostname_exec(shorewall_t) +') + +optional_policy(` iptables_domtrans(shorewall_t) ')