Description of problem: seen in policy-F14.patch: diff --git a/policy/modules/services/ssh.fc b/policy/modules/services/ssh.fc index 078bcd7..dd706b0 100644 --- a/policy/modules/services/ssh.fc +++ b/policy/modules/services/ssh.fc .... +/root/\.ssh(/.*)? gen_context(system_u:object_r:home_ssh_t,s0) +/root/\.shosts gen_context(system_u:object_r:home_ssh_t,s0) Shouldn't that be ssh_home_t instead? Version-Release number of selected component (if applicable): selinux-policy-3.9.5-7.fc15.noarch How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
They are typealias of each other, IE the same thing. The strange thing is the default seems to be ssh_home_t but semanage is writing them out as home_ssh_t.
Oops. I just found the bug. Fixed in selinux-policy-3.9.5-8
selinux-policy-3.9.5-10.fc14 has been submitted as an update for Fedora 14. https://admin.fedoraproject.org/updates/selinux-policy-3.9.5-10.fc14
Looks fixed, thanks - the label on /root/.ssh/known_hosts is staying nailed down to ssh_home_t rather than continually transmogrifying back to home_ssh_t.
Update karma please.
I see no Bugzilla button for karma, sorry.. :)
Click on link https://admin.fedoraproject.org/updates/selinux-policy-3.9.5-10.fc14 And leave a comment.
selinux-policy-3.9.5-10.fc14 has been pushed to the Fedora 14 stable repository. If problems still persist, please make note of it in this bug report.