Bug 181783

Summary: prelink writes files to /var/lib/misc which is hard to lock down by selinux
Product: [Fedora] Fedora Reporter: Daniel Walsh <dwalsh>
Component: prelinkAssignee: Jakub Jelinek <jakub>
Status: CLOSED DUPLICATE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhide   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-08-08 10:24:35 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Daniel Walsh 2006-02-16 15:55:37 UTC 
Description of problem:
Since this directory is not owned by prelink, it is hard to add a security
context to it.  In MLS/Strict policy we lock down crond, so it is not allowed to
write to var_lib_t.  If these files were in /var/lib/prelink (Or some other
directory prelink could own) we could label that prelink_var_lib_t and allow
cron to update it.
Comment 1 Jakub Jelinek 2006-08-08 10:24:35 UTC 

*** This bug has been marked as a duplicate of 194473 ***