From: deraadt <deraadt@openbsd.org>
Date: Sun, 20 Jul 2014 04:29:07 +0000 (+0000)
Subject: no longer play with /dev/log
X-Git-Url: http://artulab.com/gitweb/?a=commitdiff_plain;h=83c2a8aacb1ae6a0da8c47bdacf3685c146f6881;p=openbsd

no longer play with /dev/log
---

diff --git a/etc/systrace/usr_sbin_lpd b/etc/systrace/usr_sbin_lpd
index bcc2ffc400e..bb9e9b7132a 100644
--- a/etc/systrace/usr_sbin_lpd
+++ b/etc/systrace/usr_sbin_lpd
@@ -1,4 +1,4 @@
-# $OpenBSD: usr_sbin_lpd,v 1.6 2014/07/14 05:48:18 guenther Exp $
+# $OpenBSD: usr_sbin_lpd,v 1.7 2014/07/20 04:29:07 deraadt Exp $
 #
 # Policy for lpd.
 # This policy works for the default configuration of lpd.
@@ -14,7 +14,6 @@ Policy: /usr/sbin/lpd, Emulation: native
 	native-chmod: filename eq "/var/run/printer" then permit
 	native-chown: filename eq "/var/run/printer" then permit
 	native-close: permit
-	native-connect: sockaddr eq "/dev/log" then permit
 	native-connect: sockaddr match "inet-*:53" then permit
 	native-connect: sockaddr sub ":515" then permit
 	native-dup2: permit
diff --git a/etc/systrace/usr_sbin_named b/etc/systrace/usr_sbin_named
index 70257d120de..d7b4277c4d0 100644
--- a/etc/systrace/usr_sbin_named
+++ b/etc/systrace/usr_sbin_named
@@ -1,4 +1,4 @@
-# $OpenBSD: usr_sbin_named,v 1.7 2014/07/14 05:48:18 guenther Exp $
+# $OpenBSD: usr_sbin_named,v 1.8 2014/07/20 04:29:07 deraadt Exp $
 #
 # Policy for named that uses named user and chroots to /var/named
 # This policy works for the default configuration of named.
@@ -14,7 +14,6 @@ Policy: /usr/sbin/named, Emulation: native
 	native-chroot: filename eq "/var/named" then permit
 	native-close: permit
 	native-closefrom: permit
-	native-connect: sockaddr eq "/dev/log" then permit
 	native-connect: sockaddr match "inet-*" then permit
 	native-dup2: permit
 	native-exit: permit