Project

General

Profile

Bug #30657

Selinux blocks websockify, vnc console is blocked

Added by Lukas Zapletal 3 months ago. Updated 2 months ago.

Status:
Closed
Priority:
Normal
Category:
General Foreman
Target version:
-
Difficulty:
Triaged:
Yes
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

/var/log/audit:

type=AVC msg=audit(1597137980.568:2781): avc:  denied  { execute } for  pid=18884 comm="websockify.py" path="/usr/bin/python2.7" dev="dm-0" ino=402654774 scontext=system_u:system_r:websockify_t:s0 tcontext=system_u:object_r:bin_t:s0 tclass=file permissive=0

Related issues

Related to SELinux - Bug #30866: Enable passenger by default and backport rulesClosed

Associated revisions

Revision e7b31797 (diff)
Added by Lukas Zapletal 3 months ago

Fixes #30657 - allow websockify to list bin

History

#1 Updated by The Foreman Bot 3 months ago

  • Assignee set to Lukas Zapletal
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman-selinux/pull/111 added

#2 Updated by The Foreman Bot 3 months ago

  • Fixed in Releases 2.3.0 added

#3 Updated by Anonymous 3 months ago

  • Status changed from Ready For Testing to Closed

#4 Updated by Lukas Zapletal 2 months ago

  • Related to Bug #30866: Enable passenger by default and backport rules added

#5 Updated by Tomer Brisker 2 months ago

  • Fixed in Releases 2.2.0 added
  • Fixed in Releases deleted (2.3.0)

Also available in: Atom PDF