[selinux-policy: 72/3172] add a few missing ports, and ppp_device_t

Daniel J Walsh dwalsh at fedoraproject.org
Thu Oct 7 19:11:23 UTC 2010 

commit 05a5cdccc3386fea0921f5380a762b43d97f4e61
Author: Chris PeBenito <cpebenito at tresys.com>
Date:   Fri Apr 29 20:22:04 2005 +0000

    add a few missing ports, and ppp_device_t

 refpolicy/policy/modules/kernel/corenetwork.te |    9 +++++++++
 1 files changed, 9 insertions(+), 0 deletions(-)
---
diff --git a/refpolicy/policy/modules/kernel/corenetwork.te b/refpolicy/policy/modules/kernel/corenetwork.te
index e341277..a9d46b5 100644
--- a/refpolicy/policy/modules/kernel/corenetwork.te
+++ b/refpolicy/policy/modules/kernel/corenetwork.te
@@ -7,6 +7,9 @@ attribute node_type;
 attribute port_type;
 attribute reserved_port_type;
 
+type ppp_device_t;
+devices_make_device_node(ppp_device_t)
+
 #
 # tun_tap_device_t is the type of /dev/net/tun/* and /dev/net/tap/*
 #
@@ -40,22 +43,28 @@ network_port(ftp_data, tcp,20)
 network_port(ftp, tcp,21)
 network_port(http_cache, tcp,3128, udp,3130, tcp,8080)
 network_port(http, tcp,80, tcp,443)
+network_port(howl, tcp,5335, udp,5353)
+dnl network_port(i18n_input) # no defined portcon in current strict
 network_port(inetd_child, tcp,7, udp,7, tcp,9, udp,9, tcp,13, udp,13, tcp,19, udp,19, tcp,37, udp,37, tcp,113, tcp,512, tcp,543, tcp,544, tcp,891, udp,891, tcp,892, udp,892, tcp,2105)
 network_port(innd, tcp,119)
 network_port(ipp, tcp,631, udp,631)
 network_port(kerberos_admin, tcp,464, udp,464, tcp,749)
 network_port(kerberos_master, tcp,4444, udp,4444)
 network_port(kerberos, tcp,88, udp,88, tcp,750, udp,750)
+network_port(ktalkd, udp,517, udp,518)
 network_port(ldap, tcp,389, udp,389, tcp,636, udp,636)
 network_port(mail, tcp,2000)
+network_port(mysqld, tcp,3306)
 network_port(nmbd, udp,137, udp,138, udp,139)
 network_port(pop, tcp,106, tcp,109, tcp,110)
 network_port(portmap, udp,111, tcp,111)
+network_port(postgresql, tcp,5432)
 network_port(printer, tcp,515)
 network_port(pxe, udp,4011)
 network_port(radacct, udp,1646, udp,1813)
 network_port(radius, udp,1645, udp,1812)
 network_port(rsh, tcp,514)
+network_port(rsync, tcp,873, udp,873)
 network_port(smbd, tcp,137-139, tcp,445)
 network_port(smtp, tcp,25, tcp,465, tcp,587)
 network_port(snmp, udp,161, udp,162, tcp,199)

More information about the scm-commits mailing list