Bug 652438
Summary: | SELinux is preventing /usr/sbin/sshd "search" entry on /etc/samba. | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Michael Gruys <m.gruys> | ||||||
Component: | openssh | Assignee: | Jan F. Chadima <jchadima> | ||||||
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | low | ||||||||
Version: | 14 | CC: | dwalsh, jchadima, mgrepl, ssorce, tmraz | ||||||
Target Milestone: | --- | Keywords: | Reopened | ||||||
Target Release: | --- | ||||||||
Hardware: | i386 | ||||||||
OS: | Linux | ||||||||
Whiteboard: | setroubleshoot_trace_hash:cd4347496e1abd253a2ca966c72371416676504187c6d064142255f7b5918610 | ||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2011-02-25 12:40:32 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Attachments: |
|
Description
Michael Gruys
2010-11-11 20:58:37 UTC
Did you setup ssh and Samba to play together? Or any chance you were sitting in /etc/samba directory when you started/restarted sshd daemon using /etc/init.d/sshd restart Or is /etc/samba listed as a homedir in /etc/passwd? (In reply to comment #2) > Or is /etc/samba listed as a homedir in /etc/passwd? No. It is not mentioned in /etc/passwd (In reply to comment #1) > Did you setup ssh and Samba to play together? > How can I see that? > Or any chance you were sitting in /etc/samba directory when you > started/restarted sshd daemon using > > /etc/init.d/sshd restart I do not think that. I suspect fail2ban is causing this message. I have no ssh daemon started stopped or restart at the moment of the message. I do not know what info further is needed to solve this issue? Has it happened again? Not anymore. Ok reopen if it happens again. I'm sorry to report this, but it happened again today... Please let me know what additional info you further need. Note: I can only change the status to "assigned" and not choose it to "reopen". Is Can you guys think of any reason sshd would be searching /etc/samba? pam_winbind? Do you have winbind in /etc/nsswitch.conf or pam_winbind in /etc/pam.d/sshd? Created attachment 460995 [details]
/etc/nsswitch.conf
Created attachment 460996 [details]
/etc/pam.d/sshd
Tomas, if winbind was in either of those, it would not be unusual for the login programs to need search. Miroslav can you modify auth_login_pgm_domain to use files_read_config_files($1) In f13/F14. Fixed in the current policies. |