Bug 441035
Summary: | tmpwatcher complaints | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Need Real Name <lsof> |
Component: | selinux-policy | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | rawhide | CC: | jkubin |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2008-04-06 09:56:10 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Need Real Name
2008-04-05 12:00:27 UTC
You have a mislabeled file out on /tmp. Some how this file got there with out a label, you should either remove the file or label it using chcon -t tmp_t /tmp/virtual-user* Then surely the bug is that the file was not labelled? There is also a file put there by seahorse. Was the file put there by seahorce mislabeled? Was this an upgraded machine from a machine that was not running SELinux? Relabeling of a machine does not effect the contents of /tmp, So in some cases garbage remains from when the system had SELinux turned on. These files have to be handled manually. We used to just delete the contents of /tmp, but this was considered too dangerous. You should not see newly created files with the label of file_t. I will give tmpreaper/tmpwatch the ability to delete these files. Yes it was from an upgrade, but dont worry about changing tmpwatch it sounds racey. No it just gives the ability fro tmpwatch to handle mislabeled/unlabeled files in /tmp. |