type telnetd, domain;
type telnetd_exec, exec_type, file_type; 

#init_daemon_domain(telnetd)
domain_auto_trans(shell, telnetd_exec, telnetd)

net_domain(netd)

allow telnetd self:tcp_socket {create setopt bind listen};
allow telnetd port:tcp_socket { name_bind};
allow telnetd node:tcp_socket { node_bind};

allow telnetd self:capability {net_raw net_bind_service};
allow telnetd rootfs:file {entrypoint execute execmod};
allow telnetd console_device:chr_file { read write};