Bug #30657: Selinux blocks websockify, vnc console is blocked - SELinux - Foreman

Bug #30657

Selinux blocks websockify, vnc console is blocked

Added by Lukas Zapletal 7 months ago. Updated 6 months ago.

Status:

Closed

Priority:

Normal

Assignee:

Lukas Zapletal

Category:

General Foreman

Target version:

Difficulty:

Triaged:

Yes

Bugzilla link:

1868005

Pull request:

https://github.com/theforeman/foreman-selinux/pull/111

Fixed in Releases:

Foreman - 2.2.0

Found in Releases:

Description

/var/log/audit:

type=AVC msg=audit(1597137980.568:2781): avc:  denied  { execute } for  pid=18884 comm="websockify.py" path="/usr/bin/python2.7" dev="dm-0" ino=402654774 scontext=system_u:system_r:websockify_t:s0 tcontext=system_u:object_r:bin_t:s0 tclass=file permissive=0

Related issues

Associated revisions

Revision e7b31797 (diff)
Added by Lukas Zapletal 6 months ago

Fixes #30657 - allow websockify to list bin

History

#1 Updated by The Foreman Bot 6 months ago

Assignee set to Lukas Zapletal
Status changed from New to Ready For Testing
Pull request https://github.com/theforeman/foreman-selinux/pull/111 added

#2 Updated by The Foreman Bot 6 months ago

Fixed in Releases 2.3.0 added

#3 Updated by Anonymous 6 months ago

Status changed from Ready For Testing to Closed

Applied in changeset e7b3179773b7fb482a2048e02c8a2df7813a5db9.

#4 Updated by Lukas Zapletal 6 months ago

Related to Bug #30866: Enable passenger by default and backport rules added

#5 Updated by Tomer Brisker 6 months ago

Fixed in Releases 2.2.0 added
Fixed in Releases deleted (~~2.3.0~~)

Also available in: Atom PDF

Project

General

Profile

Foreman » SELinux

Issues

Custom queries