Suggestion for "setroubleshoot-server" package
Daniel J Walsh
dwalsh at redhat.com
Mon Jul 15 19:00:15 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/13/2013 04:13 PM, Jorge Fábregas wrote:
> Hi,
>
> I've got a couple of Minimal-installation servers (RHEL 6.4 fully updated)
> and in order to receive the nice AVC messages on /var/log/messages we all
> know you need the setroubleshoot-server package. The problem is, once
> installed, you won't get any messages there unless you:
>
> # service auditd restart (so that it can pick-up the recently installed
> sedispatch plugin)
>
It does a reload
%post server
/sbin/service auditd reload >/dev/null 2>&1 || :
%postun server
if [ $1 = 0 ]; then
/sbin/service auditd reload >/dev/null 2>&1 || :
fi
> # service messagebus start (as it is down albeit chkconfig-wise is on for
> next reboot)
>
I think this is against packaging standards to start a service that is not
running.
> Shouldn't the above be part of the %post script on the
> setroubleshoot-package? I'm pretty sure many people bump into this.
>
> Should I open a bugzilla? Or am I being too picky? :)
>
> Regards, Jorge -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlHkRr8ACgkQrlYvE4MpobNg/QCdHQ+m9M3CqeYLRm9w3XqYkRN7
JSsAoLRNx1qth40/UVvRSUWnzyMN+Ht5
=MdWo
-----END PGP SIGNATURE-----
More information about the selinux
mailing list