Red Hat Bugzilla – Bug 782517
Propose that you turn on PrivateTmp=true in service file for ypserv
Last modified: 2012-02-01 13:53:43 EST
I would like to propose using PrivateTmp for ypserv systemd unit file
This should make the use of /tmp directory more secure
and avoid users from being able to potentially effect it.
No binary or daemon from ypserv operates in /tmp, afaik. Closing this for now, feel free to re-open it if you wish.
No problem, I will remove the SELinux policy to handle this and we will see if AVC's start happening.