* [refpolicy] [PATCH] Declare port types for ports used by Fedora but use /etc/services for port names rather than using fedora port names. If /etc/services does not have a port name for a port used by Fedora, skip for now.
@ 2012-09-10 15:12 Dominick Grift
2012-09-17 14:12 ` Christopher J. PeBenito
0 siblings, 1 reply; 2+ messages in thread
From: Dominick Grift @ 2012-09-10 15:12 UTC (permalink / raw)
To: refpolicy
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
diff --git a/policy/modules/kernel/corenetwork.te.in b/policy/modules/kernel/corenetwork.te.in
index fe2ee5e..a0fa1ac 100644
--- a/policy/modules/kernel/corenetwork.te.in
+++ b/policy/modules/kernel/corenetwork.te.in
@@ -78,6 +78,7 @@
network_port(afs_ka, udp,7004,s0)
network_port(afs_pt, udp,7002,s0)
network_port(afs_vl, udp,7003,s0)
+network_port(afs3_callback, tcp,7001,s0, udp,7001,s0)
network_port(agentx, udp,705,s0, tcp,705,s0)
network_port(amanda, udp,10080-10082,s0, tcp,10080-10083,s0)
network_port(amavisd_recv, tcp,10024,s0)
@@ -85,19 +86,28 @@
network_port(amqp, udp,5671-5672,s0, tcp,5671-5672,s0)
network_port(aol, udp,5190-5193,s0, tcp,5190-5193,s0)
network_port(apcupsd, tcp,3551,s0, udp,3551,s0)
+network_port(apertus_ldp, tcp,539,s0, udp,539,s0)
+network_port(armtechdaemon, tcp,9292,s0, udp,9292,s0)
network_port(asterisk, tcp,1720,s0, udp,2427,s0, udp,2727,s0, udp,4569,s0)
network_port(audit, tcp,60,s0)
network_port(auth, tcp,113,s0)
network_port(bgp, tcp,179,s0, udp,179,s0, tcp,2605,s0, udp,2605,s0)
network_port(boinc, tcp,31416,s0)
+network_port(boinc_client, tcp,1043,s0, udp,1034,s0)
network_port(biff) # no defined portcon
network_port(certmaster, tcp,51235,s0)
network_port(chronyd, udp,323,s0)
network_port(clamd, tcp,3310,s0)
network_port(clockspeed, udp,4041,s0)
network_port(cluster, tcp,5149,s0, udp,5149,s0, tcp,40040,s0, tcp,50006-50008,s0, udp,50006-50008,s0)
+network_port(cma, tcp,1050,s0, udp,1050,s0)
network_port(cobbler, tcp,25151,s0)
+network_port(commplex_link, tcp,5001,s0, udp,5001,s0)
+network_port(commplex_main, tcp,5000,s0, udp,5000,s0)
network_port(comsat, udp,512,s0)
+network_port(condor, tcp,9618,s0, udp,9618,s0)
+network_port(couchdb, tcp,5984,s0, udp,5984,s0)
+network_port(ctdb, tcp,4379,s0, udp,4397,s0)
network_port(cvs, tcp,2401,s0, udp,2401,s0)
network_port(cyphesis, tcp,6767,s0, tcp,6769,s0, tcp,6780-6799,s0, udp,32771,s0)
network_port(daap, tcp,3689,s0, udp,3689,s0)
@@ -108,12 +118,16 @@
network_port(dhcpd, udp,67,s0, udp,547,s0, tcp, 547,s0, udp,548,s0, tcp, 548,s0, tcp,647,s0, udp,647,s0, tcp,847,s0, udp,847,s0, tcp,7911,s0)
network_port(dict, tcp,2628,s0)
network_port(distccd, tcp,3632,s0)
-network_port(dns, udp,53,s0, tcp,53,s0)
+network_port(dns, tcp,53,s0, udp,53,s0)
+network_port(efs, tcp,520,s0)
+network_port(embrace_dp_c, tcp,3198,s0, udp,3198,s0)
network_port(epmap, tcp,135,s0, udp,135,s0)
+network_port(epmd, tcp,4369,s0, udp,4369,s0)
network_port(fingerd, tcp,79,s0)
network_port(ftp, tcp,21,s0, tcp,990,s0, udp,990,s0)
network_port(ftp_data, tcp,20,s0)
network_port(gatekeeper, udp,1718,s0, udp,1719,s0, tcp,1721,s0, tcp,7000,s0)
+network_port(gds_db, tcp,3050,s0, udp,3050,s0)
network_port(giftd, tcp,1213,s0)
network_port(git, tcp,9418,s0, udp,9418,s0)
network_port(glance_registry, tcp,9191,s0, udp,9191,s0)
@@ -123,13 +137,15 @@
network_port(hadoop_namenode, tcp,8020,s0)
network_port(hddtemp, tcp,7634,s0)
network_port(howl, tcp,5335,s0, udp,5353,s0)
-network_port(hplip, tcp,1782,s0, tcp,2207,s0, tcp,2208,s0, tcp, 8290,s0, tcp,50000,s0, tcp,50002,s0, tcp,8292,s0, tcp,9100,s0, tcp,9101,s0, tcp,9102,s0, tcp,9220,s0, tcp,9221,s0, tcp,9222,s0, tcp,9280,s0, tcp,9281,s0, tcp,9282,s0, tcp,9290,s0, tcp,9291,s0, tcp,9292,s0)
+network_port(hplip, tcp,1782,s0, tcp,2207,s0, tcp,2208,s0, tcp, 8290,s0, tcp,50000,s0, tcp,50002,s0, tcp,8292,s0, tcp,9100,s0, tcp,9101,s0, tcp,9102,s0, tcp,9220,s0, tcp,9221,s0, tcp,9222,s0, tcp,9280,s0, tcp,9281,s0, tcp,9282,s0, tcp,9290,s0, tcp,9291,s0)
network_port(http, tcp,80,s0, tcp,443,s0, tcp,488,s0, tcp,8008,s0, tcp,8009,s0, tcp,8443,s0) #8443 is mod_nss default port
network_port(http_cache, tcp,3128,s0, udp,3130,s0, tcp,8080,s0, tcp,8118,s0, tcp,10001-10010,s0) # 8118 is for privoxy
network_port(i18n_input, tcp,9010,s0)
network_port(imaze, tcp,5323,s0, udp,5323,s0)
network_port(inetd_child, tcp,1,s0, udp,1,s0, tcp,7,s0, udp,7,s0, tcp,9,s0, udp,9,s0, tcp,13,s0, udp,13,s0, tcp,19,s0, udp,19,s0, tcp,37,s0, udp,37,s0, tcp,512,s0, tcp,543,s0, tcp,544,s0, tcp,891,s0, udp,891,s0, tcp,892,s0, udp,892,s0, tcp,2105,s0, tcp,5666,s0)
network_port(innd, tcp,119,s0)
+network_port(interwise, tcp,7778,s0, udp,7778,s0)
+network_port(ionixnetmon, tcp,7410,s0, udp,7410,s0)
network_port(ipmi, udp,623,s0, udp,664,s0)
network_port(ipp, tcp,631,s0, udp,631,s0, tcp,8610-8614,s0, udp,8610-8614,s0)
network_port(ipsecnat, tcp,4500,s0, udp,4500,s0)
@@ -139,12 +155,14 @@
network_port(isns, tcp,3205,s0, udp,3205,s0)
network_port(jabber_client, tcp,5222,s0, tcp,5223,s0)
network_port(jabber_interserver, tcp,5269,s0)
+network_port(jboss_iiop, tcp,3528,s0, udp,3528,s0)
network_port(kerberos, tcp,88,s0, udp,88,s0, tcp,750,s0, udp,750,s0)
network_port(kerberos_admin, tcp,464,s0, udp,464,s0, tcp,749,s0)
network_port(kerberos_master, tcp,4444,s0, udp,4444,s0)
network_port(kismet, tcp,2501,s0)
network_port(kprop, tcp,754,s0)
network_port(ktalkd, udp,517,s0, udp,518,s0)
+network_port(l2tp, tcp,1701,s0, udp,1701,s0)
network_port(ldap, tcp,389,s0, udp,389,s0, tcp,636,s0, udp,636,s0, tcp,3268,s0)
network_port(lirc, tcp,8765,s0)
network_port(lmtp, tcp,24,s0, udp,24,s0)
@@ -155,30 +173,42 @@
network_port(milter) # no defined portcon
network_port(mmcc, tcp,5050,s0, udp,5050,s0)
network_port(monopd, tcp,1234,s0)
+network_port(mountd, tcp,20048,s0, udp,20048,s0)
+network_port(movaz_ssc, tcp,5252,s0, udp,5252,s0)
network_port(mpd, tcp,6600,s0)
+network_port(msgsrvr, tcp,8787,s0, udp,8787,s0)
network_port(msnp, tcp,1863,s0, udp,1863,s0)
network_port(mssql, tcp,1433-1434,s0, udp,1433-1434,s0)
+network_port(ms_streaming, tcp,1755,s0, udp,1755,s0)
network_port(munin, tcp,4949,s0, udp,4949,s0)
+network_port(mxi, tcp,8005,s0, udp,8005,s0)
network_port(mysqld, tcp,1186,s0, tcp,3306,s0, tcp,63132-63164,s0)
network_port(mysqlmanagerd, tcp,2273,s0)
network_port(nessus, tcp,1241,s0)
network_port(netport, tcp,3129,s0, udp,3129,s0)
network_port(netsupport, tcp,5404,s0, udp,5404,s0, tcp,5405,s0, udp,5405,s0)
+network_port(nfs, tcp,2049,s0, udp,2049,s0)
+network_port(nfsrdma, tcp,20049,s0, udp,20049,s0)
network_port(nmbd, udp,137,s0, udp,138,s0)
network_port(ntop, tcp,3000-3001,s0, udp,3000-3001,s0)
network_port(ntp, udp,123,s0)
+network_port(oa_system, tcp,8022,s0, udp,8022,s0)
network_port(oracledb, tcp, 1521,s0,udp, 1521,s0, tcp,2483,s0,udp,2483,s0, tcp,2484,s0, udp,2484,s0)
network_port(ocsp, tcp,9080,s0)
+network_port(openhpid, tcp,4743,s0, udp,4743,s0)
network_port(openvpn, tcp,1194,s0, udp,1194,s0)
+network_port(pdps, tcp,1314,s0, udp,1314,s0)
network_port(pegasus_http, tcp,5988,s0)
network_port(pegasus_https, tcp,5989,s0)
network_port(pgpkeyserver, udp, 11371,s0, tcp,11371,s0)
network_port(pingd, tcp,9125,s0)
+network_port(pktcable_cops, tcp,2126,s0, udp,2126,s0)
network_port(pop, tcp,106,s0, tcp,109,s0, tcp,110,s0, tcp,143,s0, tcp,220,s0, tcp,993,s0, tcp,995,s0, tcp,1109,s0)
network_port(portmap, udp,111,s0, tcp,111,s0)
network_port(postfix_policyd, tcp,10031,s0)
network_port(postgresql, tcp,5432,s0)
network_port(postgrey, tcp,60000,s0)
+network_port(pptp, tcp,1723,s0, udp,1723,s0)
network_port(prelude, tcp,4690,s0, udp,4690,s0)
network_port(presence, tcp,5298-5299,s0, udp,5298-5299,s0)
network_port(printer, tcp,515,s0)
@@ -195,42 +225,54 @@
network_port(ricci, tcp,11111,s0, udp,11111,s0)
network_port(ricci_modcluster, tcp,16851,s0, udp,16851,s0)
network_port(rlogind, tcp,513,s0)
-network_port(rndc, tcp,953,s0)
+network_port(rndc, tcp,953,s0, udp,953,s0)
network_port(router, udp,520,s0, udp,521,s0, tcp,521,s0)
network_port(rsh, tcp,514,s0)
network_port(rsync, tcp,873,s0, udp,873,s0)
+network_port(rtsp, tcp,554,s0, udp,554,s0)
network_port(rwho, udp,513,s0)
network_port(sap, tcp,9875,s0, udp,9875,s0)
+network_port(servistaitsm, tcp,3636,s0, udp,3636,s0)
network_port(sieve, tcp,4190,s0)
network_port(sip, tcp,5060,s0, udp,5060,s0, tcp,5061,s0, udp,5061,s0)
network_port(sixxsconfig, tcp,3874,s0, udp,3874,s0)
network_port(smbd, tcp,137-139,s0, tcp,445,s0)
network_port(smtp, tcp,25,s0, tcp,465,s0, tcp,587,s0)
-network_port(snmp, udp,161,s0, udp,162,s0, tcp,199,s0, tcp, 1161, s0)
+network_port(snmp, udp,161,s0, udp,162,s0, tcp,199,s0, tcp,1161,s0)
network_port(socks) # no defined portcon
network_port(soundd, tcp,8000,s0, tcp,9433,s0, tcp, 16001, s0)
network_port(spamd, tcp,783,s0)
network_port(speech, tcp,8036,s0)
network_port(squid, udp,3401,s0, tcp,3401,s0, udp,4827,s0, tcp,4827,s0) # snmp and htcp
+network_port(ssdp, tcp,1900,s0, udp,1900,s0)
network_port(ssh, tcp,22,s0)
network_port(stunnel) # no defined portcon
+network_port(svn, tcp,3690,s0, udp,3690,s0)
network_port(swat, tcp,901,s0)
+network_port(sype_transport, tcp,9911,s0, udp,9911,s0)
network_port(syslogd, udp,514,s0)
+network_port(syslog_tls, tcp,6514,s0, udp,6514,s0)
network_port(tcs, tcp, 30003, s0)
network_port(telnetd, tcp,23,s0)
network_port(tftp, udp,69,s0)
-network_port(tor, tcp, 6969, s0, tcp,9001,s0, tcp,9030,s0, tcp,9050,s0, tcp,9051,s0)
+network_port(tor, tcp,6969,s0, tcp,9001,s0, tcp,9030,s0, tcp,9050,s0, tcp,9051,s0)
network_port(traceroute, udp,64000-64010,s0)
network_port(transproxy, tcp,8081,s0)
+network_port(trisoap, tcp,10200,s0, udp,10200,s0)
network_port(ups, tcp,3493,s0)
network_port(utcpserver) # no defined portcon
network_port(uucpd, tcp,540,s0)
network_port(varnishd, tcp,6081-6082,s0)
network_port(virt, tcp,16509,s0, udp,16509,s0, tcp,16514,s0, udp,16514,s0)
+network_port(virtual_places, tcp,1533,s0, udp,1533,s0)
network_port(virt_migration, tcp,49152-49216,s0)
network_port(vnc, tcp,5900,s0)
network_port(wccp, udp,2048,s0)
-network_port(whois, tcp,43,s0, udp,43,s0, tcp, 4321, s0 , udp, 4321, s0 )
+network_port(websm, tcp,9090,s0, udp,9090,s0)
+network_port(whois, tcp,43,s0, udp,43,s0, tcp,4321,s0, udp,4321,s0)
+network_port(winshadow, tcp,3161,s0, udp,3261,s0)
+network_port(wsdapi, tcp,5357,s0, udp,5357,s0)
+network_port(wsicopy, tcp,3378,s0, udp,3378,s0)
network_port(xdmcp, udp,177,s0, tcp,177,s0)
network_port(xen, tcp,8002,s0)
network_port(xfs, tcp,7100,s0)
@@ -242,6 +284,7 @@
network_port(zookeeper_election, tcp,3888,s0)
network_port(zookeeper_leader, tcp,2888,s0)
network_port(zebra, tcp,2600-2604,s0, tcp,2606,s0, udp,2600-2604,s0, udp,2606,s0)
+network_port(zented, tcp,1229,s0, udp,1229,s0)
network_port(zope, tcp,8021,s0)
# Defaults for reserved ports. Earlier portcon entries take precedence;
^ permalink raw reply related [flat|nested] 2+ messages in thread
* [refpolicy] [PATCH] Declare port types for ports used by Fedora but use /etc/services for port names rather than using fedora port names. If /etc/services does not have a port name for a port used by Fedora, skip for now.
2012-09-10 15:12 [refpolicy] [PATCH] Declare port types for ports used by Fedora but use /etc/services for port names rather than using fedora port names. If /etc/services does not have a port name for a port used by Fedora, skip for now Dominick Grift
@ 2012-09-17 14:12 ` Christopher J. PeBenito
0 siblings, 0 replies; 2+ messages in thread
From: Christopher J. PeBenito @ 2012-09-17 14:12 UTC (permalink / raw)
To: refpolicy
On 09/10/12 11:12, Dominick Grift wrote:
>
> Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
Merged.
> diff --git a/policy/modules/kernel/corenetwork.te.in b/policy/modules/kernel/corenetwork.te.in
> index fe2ee5e..a0fa1ac 100644
> --- a/policy/modules/kernel/corenetwork.te.in
> +++ b/policy/modules/kernel/corenetwork.te.in
> @@ -78,6 +78,7 @@
> network_port(afs_ka, udp,7004,s0)
> network_port(afs_pt, udp,7002,s0)
> network_port(afs_vl, udp,7003,s0)
> +network_port(afs3_callback, tcp,7001,s0, udp,7001,s0)
> network_port(agentx, udp,705,s0, tcp,705,s0)
> network_port(amanda, udp,10080-10082,s0, tcp,10080-10083,s0)
> network_port(amavisd_recv, tcp,10024,s0)
> @@ -85,19 +86,28 @@
> network_port(amqp, udp,5671-5672,s0, tcp,5671-5672,s0)
> network_port(aol, udp,5190-5193,s0, tcp,5190-5193,s0)
> network_port(apcupsd, tcp,3551,s0, udp,3551,s0)
> +network_port(apertus_ldp, tcp,539,s0, udp,539,s0)
> +network_port(armtechdaemon, tcp,9292,s0, udp,9292,s0)
> network_port(asterisk, tcp,1720,s0, udp,2427,s0, udp,2727,s0, udp,4569,s0)
> network_port(audit, tcp,60,s0)
> network_port(auth, tcp,113,s0)
> network_port(bgp, tcp,179,s0, udp,179,s0, tcp,2605,s0, udp,2605,s0)
> network_port(boinc, tcp,31416,s0)
> +network_port(boinc_client, tcp,1043,s0, udp,1034,s0)
> network_port(biff) # no defined portcon
> network_port(certmaster, tcp,51235,s0)
> network_port(chronyd, udp,323,s0)
> network_port(clamd, tcp,3310,s0)
> network_port(clockspeed, udp,4041,s0)
> network_port(cluster, tcp,5149,s0, udp,5149,s0, tcp,40040,s0, tcp,50006-50008,s0, udp,50006-50008,s0)
> +network_port(cma, tcp,1050,s0, udp,1050,s0)
> network_port(cobbler, tcp,25151,s0)
> +network_port(commplex_link, tcp,5001,s0, udp,5001,s0)
> +network_port(commplex_main, tcp,5000,s0, udp,5000,s0)
> network_port(comsat, udp,512,s0)
> +network_port(condor, tcp,9618,s0, udp,9618,s0)
> +network_port(couchdb, tcp,5984,s0, udp,5984,s0)
> +network_port(ctdb, tcp,4379,s0, udp,4397,s0)
> network_port(cvs, tcp,2401,s0, udp,2401,s0)
> network_port(cyphesis, tcp,6767,s0, tcp,6769,s0, tcp,6780-6799,s0, udp,32771,s0)
> network_port(daap, tcp,3689,s0, udp,3689,s0)
> @@ -108,12 +118,16 @@
> network_port(dhcpd, udp,67,s0, udp,547,s0, tcp, 547,s0, udp,548,s0, tcp, 548,s0, tcp,647,s0, udp,647,s0, tcp,847,s0, udp,847,s0, tcp,7911,s0)
> network_port(dict, tcp,2628,s0)
> network_port(distccd, tcp,3632,s0)
> -network_port(dns, udp,53,s0, tcp,53,s0)
> +network_port(dns, tcp,53,s0, udp,53,s0)
> +network_port(efs, tcp,520,s0)
> +network_port(embrace_dp_c, tcp,3198,s0, udp,3198,s0)
> network_port(epmap, tcp,135,s0, udp,135,s0)
> +network_port(epmd, tcp,4369,s0, udp,4369,s0)
> network_port(fingerd, tcp,79,s0)
> network_port(ftp, tcp,21,s0, tcp,990,s0, udp,990,s0)
> network_port(ftp_data, tcp,20,s0)
> network_port(gatekeeper, udp,1718,s0, udp,1719,s0, tcp,1721,s0, tcp,7000,s0)
> +network_port(gds_db, tcp,3050,s0, udp,3050,s0)
> network_port(giftd, tcp,1213,s0)
> network_port(git, tcp,9418,s0, udp,9418,s0)
> network_port(glance_registry, tcp,9191,s0, udp,9191,s0)
> @@ -123,13 +137,15 @@
> network_port(hadoop_namenode, tcp,8020,s0)
> network_port(hddtemp, tcp,7634,s0)
> network_port(howl, tcp,5335,s0, udp,5353,s0)
> -network_port(hplip, tcp,1782,s0, tcp,2207,s0, tcp,2208,s0, tcp, 8290,s0, tcp,50000,s0, tcp,50002,s0, tcp,8292,s0, tcp,9100,s0, tcp,9101,s0, tcp,9102,s0, tcp,9220,s0, tcp,9221,s0, tcp,9222,s0, tcp,9280,s0, tcp,9281,s0, tcp,9282,s0, tcp,9290,s0, tcp,9291,s0, tcp,9292,s0)
> +network_port(hplip, tcp,1782,s0, tcp,2207,s0, tcp,2208,s0, tcp, 8290,s0, tcp,50000,s0, tcp,50002,s0, tcp,8292,s0, tcp,9100,s0, tcp,9101,s0, tcp,9102,s0, tcp,9220,s0, tcp,9221,s0, tcp,9222,s0, tcp,9280,s0, tcp,9281,s0, tcp,9282,s0, tcp,9290,s0, tcp,9291,s0)
> network_port(http, tcp,80,s0, tcp,443,s0, tcp,488,s0, tcp,8008,s0, tcp,8009,s0, tcp,8443,s0) #8443 is mod_nss default port
> network_port(http_cache, tcp,3128,s0, udp,3130,s0, tcp,8080,s0, tcp,8118,s0, tcp,10001-10010,s0) # 8118 is for privoxy
> network_port(i18n_input, tcp,9010,s0)
> network_port(imaze, tcp,5323,s0, udp,5323,s0)
> network_port(inetd_child, tcp,1,s0, udp,1,s0, tcp,7,s0, udp,7,s0, tcp,9,s0, udp,9,s0, tcp,13,s0, udp,13,s0, tcp,19,s0, udp,19,s0, tcp,37,s0, udp,37,s0, tcp,512,s0, tcp,543,s0, tcp,544,s0, tcp,891,s0, udp,891,s0, tcp,892,s0, udp,892,s0, tcp,2105,s0, tcp,5666,s0)
> network_port(innd, tcp,119,s0)
> +network_port(interwise, tcp,7778,s0, udp,7778,s0)
> +network_port(ionixnetmon, tcp,7410,s0, udp,7410,s0)
> network_port(ipmi, udp,623,s0, udp,664,s0)
> network_port(ipp, tcp,631,s0, udp,631,s0, tcp,8610-8614,s0, udp,8610-8614,s0)
> network_port(ipsecnat, tcp,4500,s0, udp,4500,s0)
> @@ -139,12 +155,14 @@
> network_port(isns, tcp,3205,s0, udp,3205,s0)
> network_port(jabber_client, tcp,5222,s0, tcp,5223,s0)
> network_port(jabber_interserver, tcp,5269,s0)
> +network_port(jboss_iiop, tcp,3528,s0, udp,3528,s0)
> network_port(kerberos, tcp,88,s0, udp,88,s0, tcp,750,s0, udp,750,s0)
> network_port(kerberos_admin, tcp,464,s0, udp,464,s0, tcp,749,s0)
> network_port(kerberos_master, tcp,4444,s0, udp,4444,s0)
> network_port(kismet, tcp,2501,s0)
> network_port(kprop, tcp,754,s0)
> network_port(ktalkd, udp,517,s0, udp,518,s0)
> +network_port(l2tp, tcp,1701,s0, udp,1701,s0)
> network_port(ldap, tcp,389,s0, udp,389,s0, tcp,636,s0, udp,636,s0, tcp,3268,s0)
> network_port(lirc, tcp,8765,s0)
> network_port(lmtp, tcp,24,s0, udp,24,s0)
> @@ -155,30 +173,42 @@
> network_port(milter) # no defined portcon
> network_port(mmcc, tcp,5050,s0, udp,5050,s0)
> network_port(monopd, tcp,1234,s0)
> +network_port(mountd, tcp,20048,s0, udp,20048,s0)
> +network_port(movaz_ssc, tcp,5252,s0, udp,5252,s0)
> network_port(mpd, tcp,6600,s0)
> +network_port(msgsrvr, tcp,8787,s0, udp,8787,s0)
> network_port(msnp, tcp,1863,s0, udp,1863,s0)
> network_port(mssql, tcp,1433-1434,s0, udp,1433-1434,s0)
> +network_port(ms_streaming, tcp,1755,s0, udp,1755,s0)
> network_port(munin, tcp,4949,s0, udp,4949,s0)
> +network_port(mxi, tcp,8005,s0, udp,8005,s0)
> network_port(mysqld, tcp,1186,s0, tcp,3306,s0, tcp,63132-63164,s0)
> network_port(mysqlmanagerd, tcp,2273,s0)
> network_port(nessus, tcp,1241,s0)
> network_port(netport, tcp,3129,s0, udp,3129,s0)
> network_port(netsupport, tcp,5404,s0, udp,5404,s0, tcp,5405,s0, udp,5405,s0)
> +network_port(nfs, tcp,2049,s0, udp,2049,s0)
> +network_port(nfsrdma, tcp,20049,s0, udp,20049,s0)
> network_port(nmbd, udp,137,s0, udp,138,s0)
> network_port(ntop, tcp,3000-3001,s0, udp,3000-3001,s0)
> network_port(ntp, udp,123,s0)
> +network_port(oa_system, tcp,8022,s0, udp,8022,s0)
> network_port(oracledb, tcp, 1521,s0,udp, 1521,s0, tcp,2483,s0,udp,2483,s0, tcp,2484,s0, udp,2484,s0)
> network_port(ocsp, tcp,9080,s0)
> +network_port(openhpid, tcp,4743,s0, udp,4743,s0)
> network_port(openvpn, tcp,1194,s0, udp,1194,s0)
> +network_port(pdps, tcp,1314,s0, udp,1314,s0)
> network_port(pegasus_http, tcp,5988,s0)
> network_port(pegasus_https, tcp,5989,s0)
> network_port(pgpkeyserver, udp, 11371,s0, tcp,11371,s0)
> network_port(pingd, tcp,9125,s0)
> +network_port(pktcable_cops, tcp,2126,s0, udp,2126,s0)
> network_port(pop, tcp,106,s0, tcp,109,s0, tcp,110,s0, tcp,143,s0, tcp,220,s0, tcp,993,s0, tcp,995,s0, tcp,1109,s0)
> network_port(portmap, udp,111,s0, tcp,111,s0)
> network_port(postfix_policyd, tcp,10031,s0)
> network_port(postgresql, tcp,5432,s0)
> network_port(postgrey, tcp,60000,s0)
> +network_port(pptp, tcp,1723,s0, udp,1723,s0)
> network_port(prelude, tcp,4690,s0, udp,4690,s0)
> network_port(presence, tcp,5298-5299,s0, udp,5298-5299,s0)
> network_port(printer, tcp,515,s0)
> @@ -195,42 +225,54 @@
> network_port(ricci, tcp,11111,s0, udp,11111,s0)
> network_port(ricci_modcluster, tcp,16851,s0, udp,16851,s0)
> network_port(rlogind, tcp,513,s0)
> -network_port(rndc, tcp,953,s0)
> +network_port(rndc, tcp,953,s0, udp,953,s0)
> network_port(router, udp,520,s0, udp,521,s0, tcp,521,s0)
> network_port(rsh, tcp,514,s0)
> network_port(rsync, tcp,873,s0, udp,873,s0)
> +network_port(rtsp, tcp,554,s0, udp,554,s0)
> network_port(rwho, udp,513,s0)
> network_port(sap, tcp,9875,s0, udp,9875,s0)
> +network_port(servistaitsm, tcp,3636,s0, udp,3636,s0)
> network_port(sieve, tcp,4190,s0)
> network_port(sip, tcp,5060,s0, udp,5060,s0, tcp,5061,s0, udp,5061,s0)
> network_port(sixxsconfig, tcp,3874,s0, udp,3874,s0)
> network_port(smbd, tcp,137-139,s0, tcp,445,s0)
> network_port(smtp, tcp,25,s0, tcp,465,s0, tcp,587,s0)
> -network_port(snmp, udp,161,s0, udp,162,s0, tcp,199,s0, tcp, 1161, s0)
> +network_port(snmp, udp,161,s0, udp,162,s0, tcp,199,s0, tcp,1161,s0)
> network_port(socks) # no defined portcon
> network_port(soundd, tcp,8000,s0, tcp,9433,s0, tcp, 16001, s0)
> network_port(spamd, tcp,783,s0)
> network_port(speech, tcp,8036,s0)
> network_port(squid, udp,3401,s0, tcp,3401,s0, udp,4827,s0, tcp,4827,s0) # snmp and htcp
> +network_port(ssdp, tcp,1900,s0, udp,1900,s0)
> network_port(ssh, tcp,22,s0)
> network_port(stunnel) # no defined portcon
> +network_port(svn, tcp,3690,s0, udp,3690,s0)
> network_port(swat, tcp,901,s0)
> +network_port(sype_transport, tcp,9911,s0, udp,9911,s0)
> network_port(syslogd, udp,514,s0)
> +network_port(syslog_tls, tcp,6514,s0, udp,6514,s0)
> network_port(tcs, tcp, 30003, s0)
> network_port(telnetd, tcp,23,s0)
> network_port(tftp, udp,69,s0)
> -network_port(tor, tcp, 6969, s0, tcp,9001,s0, tcp,9030,s0, tcp,9050,s0, tcp,9051,s0)
> +network_port(tor, tcp,6969,s0, tcp,9001,s0, tcp,9030,s0, tcp,9050,s0, tcp,9051,s0)
> network_port(traceroute, udp,64000-64010,s0)
> network_port(transproxy, tcp,8081,s0)
> +network_port(trisoap, tcp,10200,s0, udp,10200,s0)
> network_port(ups, tcp,3493,s0)
> network_port(utcpserver) # no defined portcon
> network_port(uucpd, tcp,540,s0)
> network_port(varnishd, tcp,6081-6082,s0)
> network_port(virt, tcp,16509,s0, udp,16509,s0, tcp,16514,s0, udp,16514,s0)
> +network_port(virtual_places, tcp,1533,s0, udp,1533,s0)
> network_port(virt_migration, tcp,49152-49216,s0)
> network_port(vnc, tcp,5900,s0)
> network_port(wccp, udp,2048,s0)
> -network_port(whois, tcp,43,s0, udp,43,s0, tcp, 4321, s0 , udp, 4321, s0 )
> +network_port(websm, tcp,9090,s0, udp,9090,s0)
> +network_port(whois, tcp,43,s0, udp,43,s0, tcp,4321,s0, udp,4321,s0)
> +network_port(winshadow, tcp,3161,s0, udp,3261,s0)
> +network_port(wsdapi, tcp,5357,s0, udp,5357,s0)
> +network_port(wsicopy, tcp,3378,s0, udp,3378,s0)
> network_port(xdmcp, udp,177,s0, tcp,177,s0)
> network_port(xen, tcp,8002,s0)
> network_port(xfs, tcp,7100,s0)
> @@ -242,6 +284,7 @@
> network_port(zookeeper_election, tcp,3888,s0)
> network_port(zookeeper_leader, tcp,2888,s0)
> network_port(zebra, tcp,2600-2604,s0, tcp,2606,s0, udp,2600-2604,s0, udp,2606,s0)
> +network_port(zented, tcp,1229,s0, udp,1229,s0)
> network_port(zope, tcp,8021,s0)
>
> # Defaults for reserved ports. Earlier portcon entries take precedence;
> _______________________________________________
> refpolicy mailing list
> refpolicy at oss.tresys.com
> http://oss.tresys.com/mailman/listinfo/refpolicy
>
--
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2012-09-17 14:12 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-09-10 15:12 [refpolicy] [PATCH] Declare port types for ports used by Fedora but use /etc/services for port names rather than using fedora port names. If /etc/services does not have a port name for a port used by Fedora, skip for now Dominick Grift
2012-09-17 14:12 ` Christopher J. PeBenito
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.