From afe26f2e2ffac6da0eba924d332baae0b185f40e Mon Sep 17 00:00:00 2001
From: Luis Ressel <aranea@aixah.de>
Date: Mon, 19 Jun 2017 00:53:33 +0200
Subject: [PATCH] netutils: Mix nmap perms in with the other traceroute_t perms

---
 policy/modules/admin/netutils.te | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/policy/modules/admin/netutils.te b/policy/modules/admin/netutils.te
index c85248a3a..a1e23ad96 100644
--- a/policy/modules/admin/netutils.te
+++ b/policy/modules/admin/netutils.te
@@ -191,9 +191,13 @@ corenet_tcp_connect_all_ports(traceroute_t)
 corenet_sendrecv_all_client_packets(traceroute_t)
 corenet_sendrecv_traceroute_server_packets(traceroute_t)
 
+dev_read_rand(traceroute_t)
+dev_read_urand(traceroute_t)
+
 domain_use_interactive_fds(traceroute_t)
 
 files_read_etc_files(traceroute_t)
+files_read_usr_files(traceroute_t)
 
 init_use_fds(traceroute_t)
 
@@ -204,8 +208,3 @@ logging_send_syslog_msg(traceroute_t)
 miscfiles_read_localization(traceroute_t)
 
 userdom_use_inherited_user_terminals(traceroute_t)
-
-#rules needed for nmap
-dev_read_rand(traceroute_t)
-dev_read_urand(traceroute_t)
-files_read_usr_files(traceroute_t)