Bug #19457
closed
Qrouterd is running unconfined
Description
We need to add a policy to it. Maybe we can simply reuse qpid policy from RHEL with few changes. There is an option to make this a work item for RHEL platform team, but in any case we need to add ports 5671-5672 into qrouterd policy since these are unstandard AMQP port numbers we use both on Foreman and Proxy.
Files
Updated by Justin Sherrill almost 7 years ago
- translation missing: en.field_release set to 114
Updated by Jerone Young almost 7 years ago
- File qdrouterd_selinux.tar.gz qdrouterd_selinux.tar.gz added
To add. I created a policy for qrouterd that isn't fully tested by might help get this going. It was created for capsule servers.
Doesn't look like the qpidd policy can be reused for this case.
This has mainly just been tested with Capsule servers.
Though it does need network ports:
5646 & 5647
For a capsule server.
I've attached what I did as mores an example that can help get things going.
Updated by Ewoud Kohl van Wijngaarden 8 months ago
- Status changed from New to Rejected
- Triaged set to No
qpid (and thus qdrouterd) is going away.