diff --git a/modules-targeted.conf b/modules-targeted.conf
index ee6680c..91b1cf6 100644
--- a/modules-targeted.conf
+++ b/modules-targeted.conf
@@ -1450,6 +1450,13 @@ usernetctl = module
 xen = module
 
 # Layer: services
+# Module: varnishd
+#
+# Varnishd http accelerator daemon
+# 
+varnishd = module
+
+# Layer: services
 # Module: virt
 #
 # Virtualization libraries
@@ -1633,6 +1640,13 @@ portreserve = module
 rpcbind = module
 
 # Layer: apps
+# Module: rssh
+#
+#  Restricted (scp/sftp) only shell
+# 
+rssh = module
+
+# Layer: apps
 # Module: vmware
 #
 # VMWare Workstation virtual machines
diff --git a/policy-20090105.patch b/policy-20090105.patch
index f52386c..cefd30a 100644
--- a/policy-20090105.patch
+++ b/policy-20090105.patch
@@ -14979,8 +14979,13 @@ diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/pol
  /var/log/kadmin(d)?\.log		gen_context(system_u:object_r:kadmind_log_t,s0)
 diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/kerberos.if serefpolicy-3.6.12/policy/modules/services/kerberos.if
 --- nsaserefpolicy/policy/modules/services/kerberos.if	2009-01-19 11:07:34.000000000 -0500
-+++ serefpolicy-3.6.12/policy/modules/services/kerberos.if	2009-05-18 13:00:14.000000000 -0400
-@@ -128,6 +128,7 @@
++++ serefpolicy-3.6.12/policy/modules/services/kerberos.if	2009-05-18 14:48:49.000000000 -0400
+@@ -124,10 +124,12 @@
+ interface(`kerberos_read_config',`
+ 	gen_require(`
+ 		type krb5_conf_t;
++		type krb5_home_t;
+ 	')
  
  	files_search_etc($1)
  	allow $1 krb5_conf_t:file read_file_perms;
diff --git a/selinux-policy.spec b/selinux-policy.spec
index ebe4ecc..f4434aa 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -20,7 +20,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.6.12
-Release: 37%{?dist}
+Release: 38%{?dist}
 License: GPLv2+
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -473,6 +473,9 @@ exit 0
 %endif
 
 %changelog
+* Mon May 18 2009 Dan Walsh <dwalsh@redhat.com> 3.6.12-38
+- Add varnishd policy
+
 * Thu May 14 2009 Dan Walsh <dwalsh@redhat.com> 3.6.12-37
 - Fixes for kpropd