Red Hat Bugzilla – Bug 848746
pkcsslotd runs as initrc_t
Last modified: 2013-04-18 11:07:42 EDT
Description of problem:
Version-Release number of selected component (if applicable):
Steps to Reproduce:
# run_init service pkcsslotd status
pkcsslotd is stopped
# run_init service pkcsslotd start
[ OK ]
# ps -efZ | grep pkcsslotd
user_u:system_r:initrc_t root 13017 1 0 12:44 ? 00:00:00 /usr/sbin/pkcsslotd
root:system_r:unconfined_t:SystemLow-SystemHigh root 13115 2823 0 12:46 pts/0 00:00:00 grep pkcsslotd
* pkcsslotd runs as initrc_t
* pkcsslotd runs in its own SELinux domain
I believe we should stay with initrc_t for all these services for RHEL5.
Basically I can backport policies but we would need to make this policy as unconfined.
Also we don't see any issues with these services running as initrc.