From da73f97ee897782a4e8fc326cd428bcd7ba5fd31 Mon Sep 17 00:00:00 2001 From: Ade Lee Date: Thu, 4 Oct 2012 13:21:15 -0400 Subject: Changes to start pki_ra and pki_tps in correct context Added required selinux versions to spec file. Also added additional rule needed for F17 --- base/selinux/src/pki.fc | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'base/selinux/src/pki.fc') diff --git a/base/selinux/src/pki.fc b/base/selinux/src/pki.fc index 119e23562..8258b67c5 100644 --- a/base/selinux/src/pki.fc +++ b/base/selinux/src/pki.fc @@ -6,18 +6,19 @@ /var/log/pki gen_context(system_u:object_r:pki_log_t,s0) /usr/bin/pkidaemon gen_context(system_u:object_r:pki_tomcat_exec_t,s0) -/usr/sbin/httpd.worker -- gen_context(system_u:object_r:pki_ra_exec_t,s0) /etc/pki-ra(/.*)? gen_context(system_u:object_r:pki_ra_etc_rw_t,s0) /var/lib/pki-ra(/.*)? gen_context(system_u:object_r:pki_ra_var_lib_t,s0) /var/log/pki-ra(/.*)? gen_context(system_u:object_r:pki_ra_log_t,s0) /var/run/pki/ra(/.*)? gen_context(system_u:object_r:pki_ra_var_run_t,s0) /etc/sysconfig/pki/ra(/.*)? gen_context(system_u:object_r:pki_ra_etc_rw_t,s0) +/var/lib/pki-ra/pki-ra gen_context(system_u:object_r:pki_ra_exec_t,s0) /etc/pki-tps(/.*)? gen_context(system_u:object_r:pki_tps_etc_rw_t,s0) /var/lib/pki-tps(/.*)? gen_context(system_u:object_r:pki_tps_var_lib_t,s0) /var/log/pki-tps(/.*)? gen_context(system_u:object_r:pki_tps_log_t,s0) /var/run/pki/tps(/.*)? gen_context(system_u:object_r:pki_tps_var_run_t,s0) /etc/sysconfig/pki/tps(/.*)? gen_context(system_u:object_r:pki_tps_etc_rw_t,s0) +/var/lib/pki-tps/pki-tps gen_context(system_u:object_r:pki_tps_exec_t,s0) # default labeling for nCipher /opt/nfast/scripts/init.d/(.*) gen_context(system_u:object_r:initrc_exec_t, s0) -- cgit