Activity
From 02/25/2014 to 03/26/2014
03/25/2014
-
12:27 PM Feature #4836 (New): Policy for ovirt-discovery image
- Both RHEL6 and Fedora.
03/06/2014
-
- We need a policy for websockify.
03/03/2014
-
- Yami yami :-)
02/26/2014
-
02:58 PM Feature #4464: Implement SELinux policy for smart-proxy
- Agreed... the trouble is also that the proxy codebase is messy and it has a lot of ugly implementations. I think the...
-
- Now the question is how deep we want to go. Smart proxy can be configured to spawn virsh via sudo and other stuff. I ...
-
01:47 PM
Bug #3465 (Closed): AVC denials with Foreman 1.3 on RHEL 6
- Applied in changeset commit:2f43f94780297adc18eb9b4b3eecf5c2f5aa6de6.
-
- https://github.com/theforeman/foreman-selinux/pull/14
- 01:36 PM Revision 2f43f947: fixes #3465 - passanger spawns /bin/ps
-
- Ok I guess we need to add the following rules:...
-
- Looks the same as #3465.
-
- Thanks. It looks like we need to open access to sysfs domain, but I can't find WHY it tries to read this file.
It ... -
08:37 AM Bug #4458 (Duplicate): AVC denials aboutname="online" dev=sysfs ino=23 scontext=unconfined_u:system_r:passenger_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=file
- Installing Foreman nightly from
baseurl=http://yum.theforeman.org/nightly/el6/$basearch
on RHEL 6.5 causes AV...
Also available in: Atom