Bug 150465
Summary: | squid -v outputs nothing if logged on pts | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | JuanJo Ciarlante <jjo> |
Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED RAWHIDE | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | medium | ||
Version: | 3 | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-04-21 16:21:16 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
JuanJo Ciarlante
2005-03-07 13:04:17 UTC
+allow squid_t devpts_t:chr_file rw_file_perms; This a potentially dangerous rule, and the previous line probably should be removed also. If you change it to allow squid_t devtty_t:chr_file write; allow squid_t devpts_t:chr_file write; Does it work? Dan Nop; write it's not sufficient. I started from rw_file_perms down to this minimun: allow squid_t devpts_t:chr_file { read write }; to get squid -v output again. Ok This is fixed in Rawhide, unconfined_t no longer transitions to squid_t, so it will run in the unconfined domain and have this priv. |