From Bugzilla Helper:
User-Agent: Mozilla/5.0 (compatible; Konqueror/3.2; Linux) (KHTML, like Gecko)
Description of problem:
Some programs such as sshd prefer the old-style pseudo-tty entries to the Unix98 ones.
It is impossible to support the old-style pseudo-tty entries in SE Linux. I can add dontaudit rules for them, but such rules may conceal more important issues. Otherwise there are excessive audit entries created from these device nodes.
It would be most convenient for SE Linux users if the /dev/tty[abcdepqrstuvwxyz][0-9a-f] and /dev/pty[abcdepqrstuvwxyz][0-9a-f] device nodes were in a separate package that could be easily removed from a SE Linux system.
Currently I just rm them, but they keep re-appearing on upgrades.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
install package dev on a SE Linux system.
Actual Results: lots of annoying audit messages.
We're not building with CONFIG_LEGACY_PTYS any more. Does this
prevent the audit errors from occurring?
As of MAKEDEV 3.12.1, the dev package is no more, so those nodes don't
exist in any package.