Bug 1100582
Summary: | Default provisioning template has SELinux set to permissive | ||
---|---|---|---|
Product: | Red Hat Satellite | Reporter: | Dominic Cleal <dcleal> |
Component: | Provisioning | Assignee: | Partha Aji <paji> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Og Maciel <omaciel> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | Nightly | CC: | bbuckingham, bkearney, cwelton, jhutar, jmontleo, mmccune, omaciel |
Target Milestone: | Unspecified | Keywords: | Triaged |
Target Release: | Unused | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
URL: | http://projects.theforeman.org/issues/6246 | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Release Note | |
Doc Text: |
Users will need to enable selinux in the templates to ensure the most secure installations.
|
Story Points: | --- |
Clone Of: | 1100367 | Environment: | |
Last Closed: | 2014-09-11 12:22:56 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1100367 | ||
Bug Blocks: |
Description
Dominic Cleal
2014-05-23 07:04:27 UTC
The fourth point about yum-rhn-plugin will have to be done in Katello if you wish to fix it, it won't be removed from Foreman's default kickstart as it's still in use. http://projects.theforeman.org/issues/5899 can probably be linked. Created redmine issue http://projects.theforeman.org/issues/6246 from this bug Moving to POST since upstream bug http://projects.theforeman.org/issues/6246 has been closed VERIFIED that template Satellite Kickstart Default uses selinux --enforcing as well as all provisioned hosts also displayed that selinux was enforcing. Browser: -------- * Firefox 31.0 Mac OS Build: ------ * Satellite-6.0.4-RHEL-6-20140813.2 Packages: --------- * candlepin-0.9.23-1.el7.noarch * candlepin-common-1.0.1-1.el7.noarch * candlepin-guice-3.0-2_redhat_1.el7.noarch * candlepin-scl-1-5.el7.noarch * candlepin-scl-quartz-2.1.5-6.el7.noarch * candlepin-scl-rhino-1.7R3-3.el7.noarch * candlepin-scl-runtime-1-5.el7.noarch * candlepin-selinux-0.9.23-1.el7.noarch * candlepin-tomcat-0.9.23-1.el7.noarch * elasticsearch-0.90.10-4.el7sat.noarch * foreman-1.6.0.40-1.el7sat.noarch * foreman-compute-1.6.0.40-1.el7sat.noarch * foreman-gce-1.6.0.40-1.el7sat.noarch * foreman-libvirt-1.6.0.40-1.el7sat.noarch * foreman-ovirt-1.6.0.40-1.el7sat.noarch * foreman-postgresql-1.6.0.40-1.el7sat.noarch * foreman-proxy-1.6.0.27-1.el7sat.noarch * foreman-selinux-1.6.0.6-1.el7sat.noarch * foreman-vmware-1.6.0.40-1.el7sat.noarch * katello-1.5.0-28.el7sat.noarch * katello-ca-1.0-1.noarch * katello-certs-tools-1.5.6-1.el7sat.noarch * katello-installer-0.0.59-1.el7sat.noarch * openldap-2.4.39-3.el7.x86_64 * pulp-katello-0.3-3.el7sat.noarch * pulp-nodes-common-2.4.0-0.30.beta.el7sat.noarch * pulp-nodes-parent-2.4.0-0.30.beta.el7sat.noarch * pulp-puppet-plugins-2.4.0-0.30.beta.el7sat.noarch * pulp-puppet-tools-2.4.0-0.30.beta.el7sat.noarch * pulp-rpm-plugins-2.4.0-0.30.beta.el7sat.noarch * pulp-selinux-2.4.0-0.30.beta.el7sat.noarch * pulp-server-2.4.0-0.30.beta.el7sat.noarch * python-ldap-2.4.6-6.el7.x86_64 * ruby193-rubygem-net-ldap-0.3.1-3.el7sat.noarch * ruby193-rubygem-runcible-1.1.0-2.el7sat.noarch * rubygem-hammer_cli-0.1.1-11.el7sat.noarch * rubygem-hammer_cli_foreman-0.1.1-15.el7sat.noarch * rubygem-hammer_cli_foreman_tasks-0.0.3-3.el7sat.noarch * rubygem-hammer_cli_katello-0.0.4-12.el7sat.noarch This was delivered with Satellite 6.0 which was released on 10 September 2014. |