Bug 430158 - SElinux policy breaks NFS + NIS configuration
SElinux policy breaks NFS + NIS configuration
Product: Fedora
Classification: Fedora
Component: selinux-policy (Show other bugs)
All Linux
low Severity medium
: ---
: ---
Assigned To: Daniel Walsh
Fedora Extras Quality Assurance
Depends On:
  Show dependency treegraph
Reported: 2008-01-24 16:19 EST by Joshua Pedrick
Modified: 2008-02-26 17:45 EST (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2008-02-26 17:45:12 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Joshua Pedrick 2008-01-24 16:19:02 EST
Description of problem:
I am using NFS to mount users home directories and NIS to authenticate users.
When logging in, many services related to NFS and NIS are blocked by SElinux. As
a result users are unable to login normally.

Version-Release number of selected component (if applicable):
Fedora 8, SE linux default policies.

How reproducible:
Users home directories should be on NFS mount, users should be authenticated by NFS.

Steps to Reproduce:
1. login as NIS authenticated user with NFS home directory.
Actual results:
Login reports home directory not available, but upon login user can view home

Expected results:
Normal login

Additional info:
This problem can be resolved by setting SElinux to permissive mode.
Comment 1 Daniel Walsh 2008-01-24 18:05:39 EST
Do you have the booleans use_nfs_home_dirs and allow_ypbind turned on?

getsebool use_nfs_home_dirs allow_ypbind
Turn them on.
setsebool -P use_nfs_home_dirs=1 allow_ypbind=1

If they were set or this does not fix the problem.  Please attach the audit.log.

Note You need to log in before you can comment on or make changes to this bug.