Postfix_smtpd_t needs access to milters and cleanup seems to read/write postfix_smtpd...

author Dan Walsh <dwalsh@redhat.com>

Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)

committer Dan Walsh <dwalsh@redhat.com>

Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)
author Dan Walsh <dwalsh@redhat.com>
Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)
committer Dan Walsh <dwalsh@redhat.com>
Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)
diff --git a/policy/modules/services/postfix.te b/policy/modules/services/postfix.te

index 318ef451528a48788886cbf7f8de4e3ff69c10f8..0e248ef1e6db610e1dfa8205cbb4bb48385c1b71 100644 (file)
--- a/policy/modules/services/postfix.te
+++ b/policy/modules/services/postfix.te
@@ -268,6 +268,7 @@ stream_connect_pattern(postfix_cleanup_t, postfix_private_t, postfix_private_t,
  
  rw_fifo_files_pattern(postfix_cleanup_t, postfix_public_t, postfix_public_t)
  write_sock_files_pattern(postfix_cleanup_t, postfix_public_t, postfix_public_t)
+allow posotfix_cleanup_t postfix_smtpd_t:unix_stream_socket rw_socket_perms;
  
  manage_dirs_pattern(postfix_cleanup_t, postfix_spool_t, postfix_spool_t)
  manage_files_pattern(postfix_cleanup_t, postfix_spool_t, postfix_spool_t)
@@ -690,6 +691,10 @@ optional_policy(`
         mailman_read_data_files(postfix_smtpd_t)
  ')
  
+optional_policy(`
+       milter_stream_connect_all(postfix_smtpd_t)
+')
+
  optional_policy(`
         postgrey_stream_connect(postfix_smtpd_t)
  ')
author	Dan Walsh <dwalsh@redhat.com>
	Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)
committer	Dan Walsh <dwalsh@redhat.com>
	Mon, 24 Oct 2011 12:30:20 +0000 (08:30 -0400)