From mboxrd@z Thu Jan  1 00:00:00 1970
From: cpebenito@tresys.com (Christopher J. PeBenito)
Date: Tue, 24 Jul 2012 09:16:14 -0400
Subject: [refpolicy] [PATCH 1/1] allow nslcd to connect to remote ldap
 servers
In-Reply-To: <5005747C.3030101@mthode.org>
References: <5005747C.3030101@mthode.org>
Message-ID: <500EA01E.2030209@tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 07/17/12 10:19, Matthew Thode wrote:
> Nslcd is a daemon that allows centralized user management through ldap.
> Currently it cannot connect to remote ldap instance through
> name_connect.  I am enabling that access with this patch.
> 
> Signed-off-by: Matthew Thode <mthode@mthode.org>
> 
> --- nslcd.te.orig	2012-07-16 16:06:48.943747132 -0400
> +++ nslcd.te	2012-07-16 16:06:57.598746760 -0400
> @@ -44,6 +44,8 @@
> 
>  miscfiles_read_localization(nslcd_t)
> 
> +corenet_tcp_connect_ldap_port(nslcd_t)
> +
>  optional_policy(`
>  	ldap_stream_connect(nslcd_t)
>  ')

Merged.

-- 
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com