Return-Path: <SRS0=ka5o=QG=vger.kernel.org=selinux-refpolicy-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.1 required=3.0 tests=DKIM_SIGNED,DKIM_VALID,
	DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_PASS
	autolearn=ham autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id D9EE7C282D7
	for <selinux-refpolicy@archiver.kernel.org>; Wed, 30 Jan 2019 13:25:41 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id 9DE642184D
	for <selinux-refpolicy@archiver.kernel.org>; Wed, 30 Jan 2019 13:25:41 +0000 (UTC)
Authentication-Results: mail.kernel.org;
	dkim=pass (1024-bit key) header.d=coker.com.au header.i=@coker.com.au header.b="s/xR/8eB"
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1729193AbfA3NZl (ORCPT
        <rfc822;selinux-refpolicy@archiver.kernel.org>);
        Wed, 30 Jan 2019 08:25:41 -0500
Received: from smtp.sws.net.au ([46.4.88.250]:50550 "EHLO smtp.sws.net.au"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1725851AbfA3NZl (ORCPT
        <rfc822;selinux-refpolicy@vger.kernel.org>);
        Wed, 30 Jan 2019 08:25:41 -0500
Received: from liv.localnet (localhost [127.0.0.1])
        by smtp.sws.net.au (Postfix) with ESMTP id 9F349ED93;
        Thu, 31 Jan 2019 00:25:38 +1100 (AEDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=coker.com.au;
        s=2008; t=1548854739;
        bh=kQzHf7YW4xbeNOQTgLMf+3EdRc5NT/ZFZDWJg9a3P0g=; l=624;
        h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
        b=s/xR/8eB6UEeDtYh3XHabrgoOh7aD3WWxDg4VLkZ4KdwOBWjRFFCHIgYVOGNsnigY
         6zHKD4TFRq7tLwHVYaiHFEN6Vqg4mtNjZ9hFnscc4OLZdjJVwJ6KORnDN8sUKdi+v9
         sSUF+PBHF3y/0cgKIFYz03yrkeL6DvOdib57hQuw=
From:   Russell Coker <russell@coker.com.au>
To:     Chris PeBenito <pebenito@ieee.org>
Cc:     "selinux-refpolicy@vger.kernel.org" 
        <selinux-refpolicy@vger.kernel.org>
Subject: Re: [PATCH] yet another little patch
Date:   Wed, 30 Jan 2019 23:54:00 +1100
Message-ID: <2191347.AV8ScYefWU@liv>
In-Reply-To: <6c17065e-9cf3-2935-efab-8502705cc590@ieee.org>
References: <20190128084840.GB5441@xev> <6c17065e-9cf3-2935-efab-8502705cc590@ieee.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"
Sender: selinux-refpolicy-owner@vger.kernel.org
Precedence: bulk
List-ID: <selinux-refpolicy.vger.kernel.org>
X-Mailing-List: selinux-refpolicy@vger.kernel.org

On Wednesday, 30 January 2019 10:47:06 AM AEDT Chris PeBenito wrote:
> > +corenet_tcp_connect_tor_port(system_cronjob_t)
> 
> Everything but this hunk is merged, as it is not obvious to me.  Given
> the other networking rules, I would have guessed something like
> tcp_connect to all ports.  I can't infer the relevance of tor by itself.

It allows cron jobs to talk to tor.

One example is the Debian package "popcon" which tracks the popularity of 
Debian packages.  That will upload it's data via tor by default if possible.

-- 
My Main Blog         http://etbe.coker.com.au/
My Documents Blog    http://doc.coker.com.au/