-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi, what are the actually allowed TCP ports processes in the tor_t domain are allowed to bind to? (with tor_bind_all_unreserved_ports --> off tor_can_network_relay --> on) semanage gives me: tor_port_t tcp 6969, 9001, 9030, 9050, 9051, 9150 but tor can bind to 80,443 or 9000 without problems. (but for example 5000 is not allowed -> AVCs) Used policy version: selinux-policy-targeted-3.13.1-23.el7.noarch Is there already a boolean that allows enabling to arbitrary ports as suggested here: https://bugzilla.redhat.com/show_bug.cgi?id=544546#c5 thanks, Nusenu -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJVItGQAAoJEFv7XvVCELh0vugQAIJQHPPzgD7bOlWHaDVTL+LU +sjOPKhy23+9sbizeJ0oURpS7Xfhy/YZIqvLmoP/7omWlwtsA5y9dRmIBO4Z8xVo LPM5c7uhXSUdrsBUBgoHv7aBGvGoZ6c+CZbvQZ5gQIgTJjKsbsXB0XAU0Op7G/65 VzZYkAoHhljBs3U42C02Ln7nSMMKOHn+8htM3VmfEZZfYCTU3rCfo05Xi5de2RN7 9k3I28ChFRNHFfcu17CVQvtDBg00OJqLDqA5qKxDk1b7Q2ubR8ZI76QmFpL0fVZS PVzRjnLo2GyDIjJwDjmMNe1oPbTGCCHvb4UCLPtAzwquzxhr1L+i3FS2OGGwhF+D v3YrzYgiERjLI9zixTaM7QfNJ4nzPee8MMUpv6qlWYVh59zcI+hOSRCZA8u+m91E rwm7XNzVNPAi8w886yPSsysgtpfj0ZNFPQWbc2EDBqo2Q27HOG2P9awb/K02lT5C L6Ypqe4+9Mh9guzKiggfZDuXm/MDCWQMYUd/1JktpWikeRW9Ig0BQkOYevoLdM1o ncDb4tyvk4X8S4ZxTo4187VJSRS5rq/1Py7GP0CzZ5DZQlm0K/93mJ7jqXWmRV5q xjZ/tUycRuSiNH0PX+P3xF4aKB8+9NgBYLC+Rzv33JKTe2ayYSZorBJpBAxH887U oEyxlu6VHTt8gqKpdBAM =znLy -----END PGP SIGNATURE----- -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
