Bug 991555
Summary: | SELinux is preventing /usr/sbin/dovecot from 'name_bind' accesses on the tcp_socket . | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Steven Rostedt <srostedt> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 18 | CC: | dominick.grift, dwalsh, mgrepl, srostedt |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Unspecified | ||
Whiteboard: | abrt_hash:7b4c0ebb507ebb059dbbcddc07376b75eddbbab49c17bba5b5f7c6bbd8857a7f | ||
Fixed In Version: | selinux-policy-3.11.1-103.fc18 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-09-23 00:44:09 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Steven Rostedt
2013-08-02 17:46:35 UTC
Is tcp/10993 used by default? Google 10933 and dovecot shows it described as the way to setup as an IMAP server. I usually use 10993 as it is just a local imap server (only my local box connects to it). I seldom use the default port for security reasons, but then again, 10993 is also common for someone to sniff. I do have both 10993 and 993 blocked from external access via iptables. So lets label it the same. acff17d6ac79a70f56e93420174c9a5466eb59f5 makes this change in git. You can put this on your machine for now with semanage port -a -t pop_port_t -p tcp 10993 selinux-policy-3.11.1-101.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/selinux-policy-3.11.1-101.fc18 Package selinux-policy-3.11.1-101.fc18: * should fix your issue, * was pushed to the Fedora 18 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing selinux-policy-3.11.1-101.fc18' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2013-15645/selinux-policy-3.11.1-101.fc18 then log in and leave karma (feedback). selinux-policy-3.11.1-103.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/selinux-policy-3.11.1-103.fc18 selinux-policy-3.11.1-103.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. |