diff --git a/policy/modules/services/postfix.te b/policy/modules/services/postfix.te
index 8dd52ce4..e29556b5 100644
--- a/policy/modules/services/postfix.te
+++ b/policy/modules/services/postfix.te
@@ -294,8 +294,6 @@ stream_connect_pattern(postfix_local_t, postfix_public_t, postfix_public_t, post
 rw_sock_files_pattern(postfix_local_t, postfix_private_t, postfix_private_t)
 
 domtrans_pattern(postfix_local_t, postfix_postdrop_exec_t, postfix_postdrop_t)
-# Might be a leak, but I need a postfix expert to explain
-allow postfix_postdrop_t postfix_local_t:unix_stream_socket { read write };
 
 allow postfix_local_t postfix_spool_t:file rw_file_perms;
 
@@ -475,6 +473,9 @@ allow postfix_postdrop_t self:capability sys_resource;
 allow postfix_postdrop_t self:tcp_socket create;
 allow postfix_postdrop_t self:udp_socket create_socket_perms;
 
+# Might be a leak, but I need a postfix expert to explain
+allow postfix_postdrop_t postfix_local_t:unix_stream_socket { read write };
+
 rw_fifo_files_pattern(postfix_postdrop_t, postfix_public_t, postfix_public_t)
 
 postfix_list_spool(postfix_postdrop_t)