From: sven.vermeulen@siphos.be (Sven Vermeulen) Date: Wed, 9 Mar 2011 22:25:16 +0100 Subject: [refpolicy] [PATCH 13/15] Allow postgresql to connect to his unix_stream_socket Message-ID: <20110309212516.GA7567@siphos.be> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com Required in order to start postgresql and test activities with psql command. Signed-off-by: Sven Vermeulen --- policy/modules/services/postgresql.te | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/policy/modules/services/postgresql.te b/policy/modules/services/postgresql.te index 8ed5067..77e6ca2 100644 --- a/policy/modules/services/postgresql.te +++ b/policy/modules/services/postgresql.te @@ -205,7 +205,7 @@ allow postgresql_t self:shm create_shm_perms; allow postgresql_t self:tcp_socket create_stream_socket_perms; allow postgresql_t self:udp_socket create_stream_socket_perms; allow postgresql_t self:unix_dgram_socket create_socket_perms; -allow postgresql_t self:unix_stream_socket create_stream_socket_perms; +allow postgresql_t self:unix_stream_socket { connectto create_stream_socket_perms }; allow postgresql_t self:netlink_selinux_socket create_socket_perms; allow postgresql_t sepgsql_database_type:db_database *; -- 1.7.3.4