diff options
| author | Simo Sorce <ssorce@redhat.com> | 2008-07-02 17:55:18 -0400 |
|---|---|---|
| committer | Simo Sorce <ssorce@redhat.com> | 2008-07-07 10:01:20 -0400 |
| commit | 79df2465a78478efbe0318f1ab8cf8114204826d (patch) | |
| tree | 6f814edfa7f63599f56d0028a037c6369f85b680 | |
| parent | 469fc7663c051ab902d2bec891dca36c673b0040 (diff) | |
| download | freeipa-79df2465a78478efbe0318f1ab8cf8114204826d.tar.gz freeipa-79df2465a78478efbe0318f1ab8cf8114204826d.tar.xz freeipa-79df2465a78478efbe0318f1ab8cf8114204826d.zip | |
After the rework of the code that binds to specific interfaces to
correctly support multihomed server, we need to add a couple of
SELinux lines to the policy file. (lines suggested by Dan Walsh)
| -rw-r--r-- | ipa-server/selinux/ipa_kpasswd/ipa_kpasswd.te | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/ipa-server/selinux/ipa_kpasswd/ipa_kpasswd.te b/ipa-server/selinux/ipa_kpasswd/ipa_kpasswd.te index 55e65cc39..b5203a4ef 100644 --- a/ipa-server/selinux/ipa_kpasswd/ipa_kpasswd.te +++ b/ipa-server/selinux/ipa_kpasswd/ipa_kpasswd.te @@ -48,6 +48,9 @@ manage_dirs_pattern(ipa_kpasswd_t, ipa_kpasswd_ccache_t, ipa_kpasswd_ccache_t) manage_files_pattern(ipa_kpasswd_t, ipa_kpasswd_ccache_t, ipa_kpasswd_ccache_t) files_var_filetrans(ipa_kpasswd_t, ipa_kpasswd_ccache_t,dir) +kernel_read_network_state(ipa_kpasswd_t) +kernel_read_network_state_symlinks(ipa_kpasswd_t) + corenet_tcp_sendrecv_all_if(ipa_kpasswd_t) corenet_udp_sendrecv_all_if(ipa_kpasswd_t) corenet_raw_sendrecv_all_if(ipa_kpasswd_t) |