Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 903880 - pam_mkhomedir.so creating home dir with wrong selinux context type
pam_mkhomedir.so creating home dir with wrong selinux context type
Status: CLOSED NOTABUG
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: selinux-policy (Show other bugs)
6.3
x86_64 Linux
unspecified Severity medium
: rc
: ---
Assigned To: Miroslav Grepl
BaseOS QE Security Team
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2013-01-24 19:42 EST by su_js1
Modified: 2014-11-06 06:21 EST (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 1101139 (view as bug list)
Environment:
Last Closed: 2013-08-06 08:04:05 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description su_js1 2013-01-24 19:42:56 EST 
Description of problem:
pam_mkhomedir.so creating home dir with wrong selinux context type

Version-Release number of selected component (if applicable):
selinux-policy-3.7.19-155.el6_3.13.noarch

How reproducible:
Configure pam to use pam_mkhomedir.so. Have user login, then do:  ls -alZ /home

Steps to Reproduce:
1. Configure pam to use pam_mkhomedir.so.
2. Have user login
3. ls -alZ /home
  
Actual results:
$ ls -alZ /home/
drwxr-xr-x. user2    user2 unconfined_u:object_r:home_root_t:s0 jsu2


Expected results:
drwx------. user1    user1      unconfined_u:object_r:user_home_dir_t:s0 jms


Additional info:
Same bug reported and fixed in FC17: https://bugzilla.redhat.com/show_bug.cgi?id=863132
Comment 2 Daniel Walsh 2013-01-25 09:27:11 EST 
Please use oddjob_mkhomedir
Comment 3 RHEL Product and Program Management 2013-01-29 01:49:37 EST 
This request was not resolved in time for the current release.
Red Hat invites you to ask your support representative to
propose this request, if still desired, for consideration in
the next release of Red Hat Enterprise Linux.
Comment 4 Petri Koistinen 2014-11-06 04:00:42 EST 
This same problem occours with CentOS 7, so I guess RHEL 7 does this too. So authconfig does pam configuration wrong, it should be configured to use this oddjob_mkhomedir.
Comment 5 Milos Malik 2014-11-06 04:12:02 EST 
Related article:
 * http://danwalsh.livejournal.com/69837.html
Comment 6 Eero Volotinen 2014-11-06 06:21:59 EST 
Hi,

See documentation at : https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/ch-Configuring_Authentication.html

In short, do following steps before joining to domain

yum install -y oddjob-mkhomedir oddjob
chkconfig oddjobd on
service oddjobd start

--
Eero
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.