/sbin/lidsconf -A -o /usr/local/news -j DENY
/sbin/lidsconf -A -s /usr/local/news/bin/ctlinnd -o /usr/local/news -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/innd -o /usr/local/news -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/nnrpd -o /usr/local/news -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/nnrpd \
-o /usr/local/news/spool/overview -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/rc.news -o /usr/local/news -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/shlock -o /usr/local/news/run/ -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/innwatch -o /usr/local/news/run/ -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/innconfval -o /usr/local/news/ -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/innmail -o /usr/local/news/ -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/inndstart -o /usr/local/news/ -j WRITE
/sbin/lidsconf -A -s /usr/local/news/bin/inndstart \
-o CAP_NET_BIND_SERVICE 119 -j GRANT
/sbin/lidsconf -A -s /usr/local/news/bin/inndstart -o CAP_SETGID -j GRANT
/sbin/lidsconf -A -s /usr/local/news/bin/inndstart -o CAP_SETUID -j GRANT
/sbin/lidsconf -A -s /usr/local/news/bin/nnrpd -o CAP_SETUID -j GRANT
/sbin/lidsconf -A -s /usr/local/news/bin/nnrpd -o CAP_SETGID -j GRANT |