diff options
author | Rob Crittenden <rcritten@redhat.com> | 2009-08-28 18:01:02 -0400 |
---|---|---|
committer | Rob Crittenden <rcritten@redhat.com> | 2009-09-10 11:40:59 -0400 |
commit | df17e42216f5efbda37df524a15de427b47ec34d (patch) | |
tree | 0969083bc22f80ef95120df1f3b9cc5f44973608 /ipalib/__init__.py | |
parent | a269df542099e14b16249473857d3067a6da1d41 (diff) | |
download | freeipa-df17e42216f5efbda37df524a15de427b47ec34d.tar.gz freeipa-df17e42216f5efbda37df524a15de427b47ec34d.tar.xz freeipa-df17e42216f5efbda37df524a15de427b47ec34d.zip |
Many SELinux fixes: ldapi, ctypes and dogtag
ldapi: grants httpd and krb5kdc to access the DS ldapi socket
ctypes: the Python uuid module includes ctypes which makes httpd segfault
due to SELinux problems.
dogtag: remove the CRL publishing permissions. This only worked if you
had dogtag installed. In the near future will publish elsewhere so for
the time being CRL file publishing will be broken with SELinux enabled.
Diffstat (limited to 'ipalib/__init__.py')
-rw-r--r-- | ipalib/__init__.py | 7 |
1 files changed, 3 insertions, 4 deletions
diff --git a/ipalib/__init__.py b/ipalib/__init__.py index b21c30384..844f5b468 100644 --- a/ipalib/__init__.py +++ b/ipalib/__init__.py @@ -873,10 +873,9 @@ from parameters import DefaultFrom, Bool, Flag, Int, Float, Bytes, Str, Password from parameters import BytesEnum, StrEnum from errors import SkipPluginModule -try: - import uuid -except ImportError: - import ipauuid as uuid +# We can't import the python uuid since it includes ctypes which makes +# httpd throw up when run in in mod_python due to SELinux issues +import ipauuid as uuid version_info = (2, 0, 0, 'alpha', 0) |