module ufdb 1.3;

require {
        type initrc_tmp_t;
        type initrc_t;
        type tmp_t;
        type squid_t;
        type unconfined_service_t;
        class sock_file write;
        class unix_stream_socket connectto;
}

#============= squid_t ==============
allow squid_t initrc_t:unix_stream_socket connectto;
allow squid_t unconfined_service_t:unix_stream_socket connectto;
allow squid_t initrc_tmp_t:sock_file write;
allow squid_t tmp_t:sock_file write;