1965298 – [RFE] Hardening security for insights-client

Bug 1965298 - [RFE] Hardening security for insights-client

Summary: [RFE] Hardening security for insights-client

Keywords:
Status:	NEW
Alias:	None
Product:	Red Hat Enterprise Linux 8
Classification:	Red Hat
Component:	insights-client
Sub Component:
Version:	8.6
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	beta
Target Release:	---
Assignee:	Christian Marineau
QA Contact:	Pavol Kotvan
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2021-05-27 12:00 UTC by Olimp Bockowski
Modified:	2023-08-17 10:43 UTC (History)
CC List:	8 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Type:	Story
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Olimp Bockowski 2021-05-27 12:00:53 UTC

Description of problem:

When I look at the package insights-client, I don't see any SELinux policies, the insight-client process runs as python with unconfined_t context explanation. 
Maybe we could change it or use proper capabilities?

Note You need to log in before you can comment on or make changes to this bug.