Bug 171748
Summary: | no midifications to selinux policy are saved | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Edward Rudd <urkle> | ||||
Component: | system-config-securitylevel | Assignee: | Chris Lumens <clumens> | ||||
Status: | CLOSED DUPLICATE | QA Contact: | |||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 4 | CC: | arequipeno | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | x86_64 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2006-08-16 14:55:27 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Edward Rudd
2005-10-25 21:10:34 UTC
*** Bug 171749 has been marked as a duplicate of this bug. *** Please test out the s-c-securitylevel package from Rawhide and verify that this works for you. I just tested out with targeted policy, enforcing, and the use_nfs_home_dirs boolean. Both booleans.local is created and getsebool shows it enabled. rebuilding the 1.6.9-1 RPM for FC4 fails to run with "Unknown error." And pre-built RPM will not install due to GLIBC version differences (2.3 vs 2.4) and older newt version (0.51.x vs 0.52.x) Created attachment 121302 [details]
Stack trace of running latest s-c-securitylevel for FC4 x86_64
nohup strace system-config-securitylevel
as root
switching tabs, opening HTTPD service, and un-checking "disable selinux
protection for httpd daemon"
I had previously used setsebool -P to turn that flag on in this case.
I am unable to reproduce this on a fresh install of FC4 with the specified version of s-c-securitylevel on x86_64. Do you have any other information which may be helpful in figuring out what is going on? Other than this system is a FC3 to FC4 upgrade.. but I have re-installed the s-c-securitylevel package and relabeled the system and it is still doing it. Is they any way of easily debugging to see where the s-c-securitylevel program is failing to write to the file? And is there any useful information in the stack trace? I see this behavior on a fully updated Fedora Core 4 system (system-config-securitylevel-1.5.8.1-1). Changes to the samba_enable_home_dirs boolean did not take. This is a dual-processor i686 system, clean install. |