On Tue, May 25, 2021 at 2:01 PM Richard Shaw <hobbes1069(a)gmail.com> wrote:
Due to a change in SELinux for Fedora 34 (I can't find the link
right
now), the policy for fail2ban needs to be updated[1] but the changes are a
little bit beyond my understanding of SELinux.
Any help or pointers from an expert?
Hi Robert,
There were a set of changes [1] adding new SELinux permissions in F34.
Fail2ban uses its own selinux policy which overrides the one distributed in
the selinux-policy package, so it needs to be addressed in the component. I
am helping with that [2]. I will take a look at those new bzs and suggest
additional changes, probably close some of them as dups.
[1]
https://fedoraproject.org/wiki/SELinux/Changes/Make_selinux_policy_uptoda...
[2]
https://bugzilla.redhat.com/show_bug.cgi?id=1943696
--
Zdenek Pytela
Security SELinux team