Bug 616549
Summary: | SELinux is preventing /usr/bin/perl "read" access on /usr/share/perl5/strict.pm. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Donald Edward Winslow <dew> |
Component: | selinux-policy | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 13 | CC: | dwalsh, mgrepl |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | setroubleshoot_trace_hash:84856749b696752da5d7e80f550f62238bac83c8ccda1c8d1750a727f6e8d969 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2010-07-22 14:24:36 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Donald Edward Winslow
2010-07-20 18:46:10 UTC
restorecon -R -v /usr/share/perl5 Any idea how this got mislabeled? What does the output of matchpathcon /usr/share/perl5/strict.pm Say? I installed a bunch of perl packages I don't really need; one or more of those is probably the culprit. Here is the output of your command: [Donald@Zonotrichia ~]$ matchpathcon /usr/share/perl5/strict.pm /usr/share/perl5/strict.pm unconfined_u:object_r:user_home_t:s0 [Donald@Zonotrichia ~]$ > grep /usr/share/perl5 /etc/passwd > grep /usr/share/perl5 /etc/selinux/targeted/contexts/files/* These two commands yielded no output. What does matchpathcon /usr/share/perl5 output? unconfined_u:object_r:user_home_dir_t:s0 Ok so something is telling perl5 it is a homedir. getent passwd | grep share [Donald@Zonotrichia ~]$ getent passwd | grep share smolt:x:492:481:Smolt:/usr/share/smolt:/sbin/nologin tomcat:x:91:91:Apache Tomcat:/usr/share/tomcat5:/bin/sh jetty:x:488:472::/usr/share/jetty:/bin/sh cacti:x:485:467::/usr/share/cacti:/sbin/nologin icecast:x:472:453:icecast streaming server:/usr/share/icecast:/sbin/nologin ajaxterm:x:464:445:Ajaxterm user:/usr/share/ajaxterm:/sbin/nologin rabbit:x:463:444:rabbit:/usr/share/doc/RabbIT-4.1:/sbin/nologin dansguardian:x:459:439:DansGuardian web content filter:/usr/share/dansguardian:/sbin/nologin netdisco:x:502:502::/usr/share/netdisco/:/bin/sh netdisco:x:502:502::/usr/share/netdisco/:/bin/sh Is causing the problem. Can you change its shell to /sbin/nologin? And then run # genhomedircon # restorecon -R -v /usr/share I did that. Hopefully it won't change back now. Thanks for your patience with these issues, Daniel! |