Red Hat Bugzilla – Bug 430969
selinux prevent changing samba password when configured to synchronize unix password.
Last modified: 2009-07-20 06:00:20 EDT
Description of problem:
When samba is configured to synchronize with unix password, selinux prevent
changing samba password with non-root. If selinux is set to permissive, I still
get the same alert, but the password change succeded.
Version-Release number of selected component (if applicable):
samba version 3.0.25b-0.el5.4
Steps to Reproduce:
1. Config samba to sychronize unix password.
2. Set selinux to enforce mode.
3. Su to the user
4. Run "smbpasswd -U user" to change password.
Change failed with selinux alert generated.
If turn off "unix password sync", change samba password works.
Created attachment 293481 [details]
Fixed in selinux-policy-2.4.6-118
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux maintenance release. Product Management has requested
further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed
products. This request is not yet committed for inclusion in an Update
Lin, could you please try the latest selinux-policy and give us a feedback
whether it works for you? Thank you.
Latest packages are available here:
It works with selinux-policy-2.4.6-118. Thank you.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.