Update to lastest selinux-policy-contrib

5 years ago · e923ba8371
parent 9c838cdfb9
commit e923ba8371
1 changed files with 2 additions and 1 deletions
--- a/fail2ban.te
+++ b/fail2ban.te
@ -65,7 +65,7 @@ files_pid_filetrans(fail2ban_t, fail2ban_var_run_t, file)

 kernel_read_system_state(fail2ban_t)
 kernel_read_network_state(fail2ban_t)
-
+kernel_read_net_sysctls(fail2ban_t)

 corecmd_exec_bin(fail2ban_t)
 corecmd_exec_shell(fail2ban_t)
@ -79,6 +79,7 @@ corenet_tcp_connect_whois_port(fail2ban_t)
 corenet_tcp_sendrecv_whois_port(fail2ban_t)

 dev_read_urand(fail2ban_t)
+dev_read_sysfs(fail2ban_t)

 domain_use_interactive_fds(fail2ban_t)
 domain_dontaudit_read_all_domains_state(fail2ban_t)