diff -u old/named.fc new/named.fc
--- old/named.fc	2005-04-12 23:24:32.000000000 +1000
+++ new/named.fc	2005-04-12 23:24:23.000000000 +1000
@@ -16,6 +16,7 @@
 /etc/rndc.*		--	system_u:object_r:named_conf_t
 /etc/rndc.key  		-- 	system_u:object_r:dnssec_t
 /usr/sbin/named      	--	system_u:object_r:named_exec_t
+/usr/sbin/named-checkconf --	system_u:object_r:named_checkconf_exec_t
 /usr/sbin/r?ndc		--	system_u:object_r:ndc_exec_t
 /var/run/ndc		-s	system_u:object_r:named_var_run_t
 /var/run/bind(/.*)?		system_u:object_r:named_var_run_t
diff -u old/named.te new/named.te
--- old/named.te	2005-04-12 23:24:39.000000000 +1000
+++ new/named.te	2005-04-12 23:24:45.000000000 +1000
@@ -15,6 +15,9 @@
 daemon_domain(named, `, nscd_client_domain')
 tmp_domain(named)
 
+type named_checkconf_exec_t, file_type, exec_type, sysadmfile;
+domain_auto_trans(initrc_t, named_checkconf_exec_t, named_t)
+
 # For /var/run/ndc used in BIND 8
 file_type_auto_trans(named_t, var_run_t, named_var_run_t, sock_file)