Bug 470844
Summary: | SELinux is preventing tmpwatch (tmpreaper_t) "rmdir" to ./kdecache-jim (samba_share_t). | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Samster <jbfmail> |
Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED CANTFIX | QA Contact: | Ben Levenson <benl> |
Severity: | low | Docs Contact: | |
Priority: | medium | ||
Version: | 8 | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2008-11-10 21:35:38 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Samster
2008-11-10 16:20:29 UTC
What directory do you have labeled samba_share_t? /tmp/kde-jim/ksycoca -> /var/tmp/kdecache-jim/ksycoca ksycoca: symbolic link to `/var/tmp/kdecache-jim/ksycoca' kdecache-jim within /var/tmp is labeled samba_share_t ----------------------------------------------------- Within the kdecache-jim directory are two other files labeled samba_share_t: drwx------ jim jim unconfined_u:object_r:samba_share_t:s0 help -rw-rw-r-- jim jim unconfined_u:object_r:samba_share_t:s0 ksycoca The 'help' directory is empty. Well then the question is do you want to allow tmpreaper to delete these files, if yes, you can update policy to allow it. # grep samba_share_t /var/log/audit/audit.log | audit2allow -M mytmpreaper # semodule -i mytmpreaper.pp Or just delete the files/directory yourself. |