diff --git a/refpolicy/policy/modules/admin/usermanage.te b/refpolicy/policy/modules/admin/usermanage.te index 13690fe55..46edd9c78 100644 --- a/refpolicy/policy/modules/admin/usermanage.te +++ b/refpolicy/policy/modules/admin/usermanage.te @@ -50,7 +50,7 @@ domain_type(sysadm_passwd_t) domain_entry_file(sysadm_passwd_t,admin_passwd_exec_t) type sysadm_passwd_tmp_t; -files_type(sysadm_passwd_tmp_t) +files_tmp_file(sysadm_passwd_tmp_t) type useradd_t; type useradd_exec_t; diff --git a/refpolicy/policy/modules/services/nscd.te b/refpolicy/policy/modules/services/nscd.te index 8add65079..5f902d2a0 100644 --- a/refpolicy/policy/modules/services/nscd.te +++ b/refpolicy/policy/modules/services/nscd.te @@ -98,6 +98,7 @@ libs_use_shared_libs(nscd_t) logging_send_syslog_msg(nscd_t) +miscfiles_read_certs(nscd_t) miscfiles_read_localization(nscd_t) seutil_read_config(nscd_t) diff --git a/refpolicy/policy/modules/system/logging.te b/refpolicy/policy/modules/system/logging.te index 5a20ef31a..f02503e8a 100644 --- a/refpolicy/policy/modules/system/logging.te +++ b/refpolicy/policy/modules/system/logging.te @@ -109,6 +109,7 @@ allow auditd_t auditd_etc_t:file r_file_perms; allow auditd_t auditd_log_t:dir rw_dir_perms; allow auditd_t auditd_log_t:file create_file_perms; +allow auditd_t auditd_log_t:lnk_file create_lnk_perms; allow auditd_t var_log_t:dir search; allow auditd_t auditd_var_run_t:file create_file_perms;