Bringing interfaces up at boot and SElinux (?)
Russell Coker
russell at coker.com.au
Sun May 22 13:36:53 UTC 2005
On Wednesday 18 May 2005 22:35, Daniel J Walsh <dwalsh at redhat.com> wrote:
> >The error is probably from SELinux; there's a ping in
> > /sbin/dhclient-script when it times out.
>
> dhcpc should have the ability to ping.
> domain_auto_trans(dhcpc_t, ping_exec_t, ping_t)
The problem is that ping_t is not defined in the targeted policy.
The attached patch will give dhcpc_t the access to do what it wants when there
is no ping_t domain, it will work with both targeted and strict policy
(tested on targeted).
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
-------------- next part --------------
A non-text attachment was scrubbed...
Name: diff
Type: text/x-diff
Size: 377 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/test/attachments/20050522/85283e6f/attachment.bin
More information about the test
mailing list