From: aranea@aixah.de (Luis Ressel)
Date: Mon, 19 Jun 2017 00:53:33 +0200
Subject: [refpolicy] [PATCH v2 1/3] netutils: Mix nmap perms in with the
	other traceroute_t perms
Message-ID: <20170618225335.25973-1-aranea@aixah.de>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

---
 policy/modules/admin/netutils.te | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/policy/modules/admin/netutils.te b/policy/modules/admin/netutils.te
index c85248a3..a1e23ad9 100644
--- a/policy/modules/admin/netutils.te
+++ b/policy/modules/admin/netutils.te
@@ -191,9 +191,13 @@ corenet_tcp_connect_all_ports(traceroute_t)
 corenet_sendrecv_all_client_packets(traceroute_t)
 corenet_sendrecv_traceroute_server_packets(traceroute_t)
 
+dev_read_rand(traceroute_t)
+dev_read_urand(traceroute_t)
+
 domain_use_interactive_fds(traceroute_t)
 
 files_read_etc_files(traceroute_t)
+files_read_usr_files(traceroute_t)
 
 init_use_fds(traceroute_t)
 
@@ -204,8 +208,3 @@ logging_send_syslog_msg(traceroute_t)
 miscfiles_read_localization(traceroute_t)
 
 userdom_use_inherited_user_terminals(traceroute_t)
-
-#rules needed for nmap
-dev_read_rand(traceroute_t)
-dev_read_urand(traceroute_t)
-files_read_usr_files(traceroute_t)
-- 
2.13.1