Bug 644333 - SELinux is preventing /bin/bash "read" access on /home/mark.
SELinux is preventing /bin/bash "read" access on /home/mark.
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: selinux-policy (Show other bugs)
5.6
All Linux
medium Severity medium
: rc
: ---
Assigned To: Miroslav Grepl
Milos Malik
setroubleshoot_trace_hash:eaebbbe5d47...
:
Depends On: 587669
Blocks: 640580
  Show dependency treegraph
 
Reported: 2010-10-19 09:27 EDT by Aleš Mareček
Modified: 2011-01-13 16:50 EST (History)
10 users (show)

See Also:
Fixed In Version: selinux-policy-2.4.6-296.el5
Doc Type: Bug Fix
Doc Text:
Under certain circumstances, SELinux could report that Internet Protocol Security (IPsec) management tools require read access to the content of a user's home directory. This error no longer occurs, and an appropriate SELinux rule has been added to resolve this issue.
Story Points: ---
Clone Of: 587669
Environment:
Last Closed: 2011-01-13 16:50:54 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Comment 1 Miroslav Grepl 2010-10-19 10:11:53 EDT
Fixed in selinux-policy-2.4.6-288.el5
Comment 4 Miroslav Grepl 2010-11-29 06:52:25 EST
Milos,
does the test pass in enforcing mode? 

I will add

files_dontaudit_search_home(ipsec_mgmt_t)
Comment 5 Miroslav Grepl 2010-12-01 05:13:48 EST
Fixed in selinux-policy-2.4.6-296.el5
Comment 7 Jaromir Hradilek 2011-01-05 11:24:02 EST
    Technical note added. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    New Contents:
Under certain circumstances, SELinux could report that Internet Protocol Security (IPsec) management tools require read access to the content of a user's home directory. This error no longer occurs, and an appropriate SELinux rule has been added to resolve this issue.
Comment 9 errata-xmlrpc 2011-01-13 16:50:54 EST
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2011-0026.html

Note You need to log in before you can comment on or make changes to this bug.