Project

General

Profile

Activity

From 09/24/2013 to 10/23/2013

10/23/2013

07:14 AM Feature #2820: Improve SELinux policy for puppet
- Create wrappers for Foreman and PM with selinux context
- Audit core selinux policy
- Rewrite the policy
More ... Lukas Zapletal

10/22/2013

06:19 PM Bug #3470 (Duplicate): Improve SELinux policy for puppet
Dominic Cleal
03:50 PM Bug #3470 (Duplicate): Improve SELinux policy for puppet
We need to make some refactoring, more testing and fixing of puppet core policy.
If not refactoring, than at least... Lukas Zapletal
06:18 PM Feature #2820 (Assigned): Improve SELinux policy for puppet
Even more info: https://bugzilla.redhat.com/show_bug.cgi?id=1012426 Dominic Cleal
11:07 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
Definitely, it's a valid bug :) Dominic Cleal
11:00 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
In any case, I'd expect no AVC denials to be logged for vanilla installations with no custom modifications. Jan Pazdziora
09:21 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
That looks like it, it runs once a day/week or something like that. Lukas Zapletal
09:16 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
Thanks, I suspect this is coming from some of the Passenger memory monitoring. Dominic Cleal
09:11 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
Dominic Cleal wrote:
> Does the Foreman app function?
The WebUI seems to function but I really only do the basic ... Jan Pazdziora
08:28 AM Bug #3465: AVC denials with Foreman 1.3 on RHEL 6
Does the Foreman app function? Dominic Cleal
05:34 AM Bug #3465 (Closed): AVC denials with Foreman 1.3 on RHEL 6
A fresh installation of Foreman from http://yum.theforeman.org/releases/1.3/el6/$basearch on RHEL 6.4 gives the follo... Jan Pazdziora

10/08/2013

09:47 AM Bug #3159 (Closed): SELinux denials when installing foreman-* packages
Applied in changeset commit:b0837e98686f47c87ecd56ce101093170794547a. Sam Kottler
08:52 AM Revision b0837e98: Fixes #3159: prevent AVC denials related to passenger interaction with the puppet_*_t and a couple other domains
Sam Kottler

09/30/2013

02:47 PM Bug #3164 (Closed): gen_ctags.sh should use /bin/rpm instead of /usr/bin/rpm
Applied in changeset commit:b1b6ccfc67a96dd5e2a19ebf033950f93f1e1434. Sam Kottler
02:36 PM Revision 71e1a174: Merge pull request #10 from skottler/bugs/3164
Fixes #3164: use /bin/rpm instead of /usr/bin/rpm Lukas Zapletal

09/27/2013

07:14 PM Bug #3164 (Ready For Testing): gen_ctags.sh should use /bin/rpm instead of /usr/bin/rpm
https://github.com/theforeman/foreman-selinux/pull/10 Sam Kottler
06:49 PM Bug #3164 (Closed): gen_ctags.sh should use /bin/rpm instead of /usr/bin/rpm
EL doesn't have /usr/bin/rpm, only /bin/rpm. Modern Fedoras have both /bin/rpm and /usr/bin/rpm so we should use /bin... Sam Kottler
06:50 PM Revision b1b6ccfc: Fixes #3164: use /bin/rpm instead of /usr/bin/rpm
Sam Kottler
06:45 PM Bug #3159 (Ready For Testing): SELinux denials when installing foreman-* packages
https://github.com/theforeman/foreman-selinux/pull/9 Sam Kottler
08:43 AM Bug #3159 (Closed): SELinux denials when installing foreman-* packages
Steps to reproduce (setenforce 0):
1. Install Foreman 1.3 RC2, configure, start.
2. yum -y install foreman-*
3. ... Lukas Zapletal
 

Also available in: Atom