Red Hat Bugzilla – Bug 848752
isnsd runs as initrc_t
Last modified: 2013-04-18 11:07:02 EDT
Description of problem:
Version-Release number of selected component (if applicable):
Steps to Reproduce:
# run_init service isnsd status
isnsd is stopped
# run_init service isnsd start
Starting iSNS Server: [ OK ]
# ps -efZ | grep isnsd
user_u:system_r:initrc_t root 14572 1 0 13:05 ? 00:00:00 isnsd
root:system_r:unconfined_t:SystemLow-SystemHigh root 14575 2823 0 13:05 pts/0 00:00:00 grep isnsd
* isnsd runs as initrc_t
* isnsd runs in its own SELinux domain
I believe we should stay with initrc_t for all these services for RHEL5.
Basically I can backport policies but we would need to make this policy as unconfined.
Also we don't see any issues with these services running as initrc.