diff --git a/gnomeclock.te b/gnomeclock.te
index 74a2212..3cece7c 100644
--- a/gnomeclock.te
+++ b/gnomeclock.te
@@ -14,7 +14,7 @@ init_daemon_domain(gnomeclock_t, gnomeclock_exec_t)
 # gnomeclock local policy
 #
 
-allow gnomeclock_t self:capability { sys_nice sys_time };
+allow gnomeclock_t self:capability { sys_nice sys_time dac_override };
 allow gnomeclock_t self:process { getattr getsched signal };
 allow gnomeclock_t self:fifo_file rw_fifo_file_perms;
 allow gnomeclock_t self:unix_stream_socket create_stream_socket_perms;
@@ -66,6 +66,7 @@ dbus_system_domain(gnomeclock_t, gnomeclock_exec_t)
 
 optional_policy(`
 	gnome_manage_usr_config(gnomeclock_t)
+	gnome_read_home_config(gnomeclock_t)
 ')
 
 optional_policy(`