Bug 759696
Summary: | SELinux is preventing /usr/sbin/swat from 'write' accesses on the sock_file unexpected. | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Boy Hartsuiker <bm.hartsuiker> | ||||
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> | ||||
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||
Severity: | unspecified | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | 16 | CC: | dominick.grift, dwalsh, mgrepl | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | x86_64 | ||||||
OS: | Unspecified | ||||||
Whiteboard: | abrt_hash:8e816323fc8e3dd5073b1321cab24e53dd1ac170b9711a6c46403abe615bf3d1 | ||||||
Fixed In Version: | selinux-policy-3.10.0-67.fc16 | Doc Type: | Bug Fix | ||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2011-12-22 22:48:55 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Boy Hartsuiker
2011-12-03 06:56:11 UTC
Created attachment 539927 [details]
File: description
Miroslav add stream_connect_pattern(swat_t, nmbd_var_run_t, nmbd_var_run_t, nmbd_t) To F15, F16, RHEl6 please. Added into all. selinux-policy-3.10.0-67.fc16 has been submitted as an update for Fedora 16. https://admin.fedoraproject.org/updates/selinux-policy-3.10.0-67.fc16 Package selinux-policy-3.10.0-67.fc16: * should fix your issue, * was pushed to the Fedora 16 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing selinux-policy-3.10.0-67.fc16' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2011-17191/selinux-policy-3.10.0-67.fc16 then log in and leave karma (feedback). I assume it was swat trying to restart smbd and nmbd that was prevented by selinux. Restarting smbd and nmbd from swat with the new policy doesn't cause an selinux alert anyore. So I think this is fixed. Thanks. Thank you for testing. Could you update karma? selinux-policy-3.10.0-67.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report. |