Bug 477922
Summary: | SElinux-targeted policy reverts to broken SSH rules | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | John Mellor <john.mellor> | ||||
Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> | ||||
Status: | CLOSED CURRENTRELEASE | QA Contact: | Ben Levenson <benl> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | low | ||||||
Version: | 10 | ||||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2009-03-23 13:38:35 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
John Mellor
2008-12-25 14:30:58 UTC
Created attachment 327837 [details]
setroubleshoot output
You can add these rules for now using # grep avc /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Fixed in selinux-policy-3.5.13-37.fc10 This is actually a change in the kernel or in libc that is causing the problem. This policy is not in F8 or F9, but that is not your problem. :^) So it is a regression and I will get the fix out for you. Where do I get this new selinux-policy-3.5.13-37.fc10 package? It is not rolled out to updates-testing. You can download it from koji, I will push out this update or a newer one once we get back to work tomorrow. Seems to be working properly now |