186474 – Targetted FTP policy does not prevent user from reading/writing from home directory

Bug 186474 - Targetted FTP policy does not prevent user from reading/writing from home directory

Summary: Targetted FTP policy does not prevent user from reading/writing from home dir...

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy-targeted
Sub Component:
Version:	5
Hardware:	i686
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Daniel Walsh
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-03-23 19:40 UTC by rambler8
Modified:	2007-11-30 22:11 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2006-05-05 15:03:19 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description rambler8 2006-03-23 19:40:12 UTC

In the Security Level Configuration GUI, in the FTP section of the SELinux 
Policy, the option "Allow ftp to read/write files in the user home directories" 
is unchecked by default. 

If the SELinux Setting is Enforcing with this setting, a local user logging in 
to the vsftpd server can still read and write files in his home directory. 
However, the user is prevented from creating new directories as expected.

The following selinux packages are installed:

libselinux-1.29.7-1.2
libselinux-devel-1.29.7-1.2
libselinux-python-1.29.7-1.2
selinux-policy-2.2.23-15
selinux-policy-targeted-2.2.23-15

Comment 1 Daniel Walsh 2006-04-03 16:36:12 UTC

Fixed in selinux-policy-2.2.29-2.fc5

Comment 3 Daniel Walsh 2006-05-05 15:03:19 UTC

Closing as these have been marked as modified, for a while.  Feel free to reopen
if not fixed

Note You need to log in before you can comment on or make changes to this bug.