- Add prosody policy written by Michael Scherer
    - Allow nagios plugins to read /sys info
    - ntpd needs to manage own log files
    - Add support for HOME_DIR/.IBMERS
    - Allow iptables commands to read firewalld config
    - Allow consolekit_t to read utmp
    - Fix filename transitions on .razor directory
    - Add additional fixes to make DSPAM with LDA working
    - Allow snort to read /etc/passwd
    - Allow fail2ban to communicate with firewalld over dbus
    - Dontaudit openshift_cgreoup_file_t read/write leaked dev
    - Allow nfsd to use mountd port
    - Call th proper interface
    - Allow openvswitch to read sys and execute plymouth
    - Allow tmpwatch to read /var/spool/cups/tmp
    - Add support for /usr/libexec/telepathy-rakia
    - Add systemd support for zoneminder
    - Allow mysql to create files/directories under /var/log/mysql
    - Allow zoneminder apache scripts to rw zoneminder tmpfs
    - Allow httpd to manage zoneminder lib files
    - Add zoneminder_run_sudo boolean to allow to start zoneminder
    - Allow zoneminder to send mails
    - gssproxy_t sock_file can be under /var/lib
    - Allow web domains to connect to whois port.
    - Allow sandbox_web_type to connect to the same ports as mozilla_plugin_t.
    - We really need to add an interface to corenet to define what a web_client_domain i
    - then define chrome_sandbox_t, mozilla_plugin_t and sandbox_web_type to that domain
    - Add labeling for cmpiLMI_LogicalFile-cimprovagt
    - Also make pegasus_openlmi_logicalfile_t as unconfined to have unconfined_domain at
    - Update policy rules for pegasus_openlmi_logicalfile_t
    - Add initial types for logicalfile/unconfined OpenLMI providers
    - mailmanctl needs to read own log
    - Allow logwatch manage own lock files
    - Allow nrpe to read meminfo
    - Allow httpd to read certs located in pki-ca
    - Add pki_read_tomcat_cert() interface
    - Add support for nagios openshift plugins
    - Add port definition for redis port
    - fix selinuxuser_use_ssh_chroot boolean