- Need to allow apps that use locks to read /var/lock if it is a syml
- Allow systemd to create tasks
- Logwatch reads /etc/sysctl.conf and /proc/sys/net/ipv4/ip_forward
- Fixes for foghorn policy
- Add labeling for systemd unit files
- Allow gnomeclok to enable ntpd service using systemctl - systemd_sy
- Add label for matahari-broker.pid file
- We want to remove untrustedmcsprocess from ability to read /proc/pi
- Fixes for matahari policy