Bug 491444
Summary: | SELinux is preventing iptables (iptables_t) "read write" fail2ban_t. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ignacio Vazquez-Abrams <ivazqueznet> |
Component: | fail2ban | Assignee: | Axel Thimm <axel.thimm> |
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 9 | CC: | dwalsh, jkubin, jonathan.underwood, mgrepl, mickeyboa |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2009-05-23 22:39:02 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ignacio Vazquez-Abrams
2009-03-21 01:26:11 UTC
fail2ban is leaking file descriptors. Has been fixed in F10 and Rawhide I believe, I guess fix needs to be backported. (In reply to comment #1) > fail2ban is leaking file descriptors. Has been fixed in F10 and Rawhide I > believe, I guess fix needs to be backported. F9 and F10/rawhide are in sync - last common build was 6 weeks ago. The leaking descriptor bug was supposedly fixed a year ago: * Thu Mar 27 2008 Axel Thimm <Axel.Thimm> - 0.8.2-14 - Close on exec fixes by Jonathan Underwood. So this looks like something new/different. There has to be other problems, I'm getting the same Selinux Error message. My bug # 499674. This is basically a design problem with fail2ban. Gamin isn't actually meant to be used in this way. I reported this upstream some time ago: http://sourceforge.net/tracker/?func=detail&aid=1971871&group_id=121032&atid=689044 *** This bug has been marked as a duplicate of bug 483510 *** |