diff --git a/Makefile.devel b/Makefile.devel
index 354624d..ccd143a 100644
--- a/Makefile.devel
+++ b/Makefile.devel
@@ -10,13 +10,14 @@ ifeq ($(MLSENABLED),)
 endif
 
 ifeq ($(MLSENABLED),1)
-	TYPE ?= mcs
+	NTYPE = mcs
 endif
 
-ifeq ($(NAME), mls)
-	TYPE ?= mls
+ifeq ($(NAME),mls)
+	NTYPE = mls
 endif
 
+TYPE ?= $(NTYPE)
+
 HEADERDIR := $(SHAREDIR)/devel/include
 include $(HEADERDIR)/Makefile
-
diff --git a/policy-20070703.patch b/policy-20070703.patch
index 91af15f..203451f 100644
--- a/policy-20070703.patch
+++ b/policy-20070703.patch
@@ -10484,7 +10484,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mail
 +files_type(mailscanner_spool_t)
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.if serefpolicy-3.0.8/policy/modules/services/mta.if
 --- nsaserefpolicy/policy/modules/services/mta.if	2007-10-22 13:21:39.000000000 -0400
-+++ serefpolicy-3.0.8/policy/modules/services/mta.if	2008-02-11 18:08:28.000000000 -0500
++++ serefpolicy-3.0.8/policy/modules/services/mta.if	2008-02-11 18:09:47.000000000 -0500
 @@ -87,6 +87,8 @@
  	# It wants to check for nscd
  	files_dontaudit_search_pids($1_mail_t)
@@ -10534,7 +10534,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
 -	userdom_manage_user_home_content_symlinks($1,mailserver_delivery)
 +	userdom_manage_all_users_home_content_dirs(mailserver_delivery)
 +	userdom_manage_all_users_home_content_files(mailserver_delivery)
-+	userdom_manage_all users_home_content_symlinks(mailserver_delivery)
++	userdom_manage_all_users_home_content_symlinks(mailserver_delivery)
  	userdom_manage_user_home_content_pipes($1,mailserver_delivery)
  	userdom_manage_user_home_content_sockets($1,mailserver_delivery)
  	userdom_user_home_dir_filetrans_user_home_content($1,mailserver_delivery,{ dir file lnk_file fifo_file sock_file })
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 95f93d0..4618806 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -17,7 +17,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.0.8
-Release: 83%{?dist}
+Release: 84%{?dist}
 License: GPLv2+
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -381,6 +381,9 @@ exit 0
 %endif
 
 %changelog
+* Fri Feb 1 2008 Dan Walsh <dwalsh@redhat.com> 3.0.8-84
+- Allow fail2ban to create sock_files in /var/run
+
 * Thu Jan 22 2008 Dan Walsh <dwalsh@redhat.com> 3.0.8-83
 - Make oddjob_mkhomedir work with confined login domains