[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: Starting stunnel from xinetd
- From: Daniel J Walsh <dwalsh redhat com>
- To: Ian Pilcher <arequipeno gmail com>
- Cc: fedora-selinux-list redhat com
- Subject: Re: Starting stunnel from xinetd
- Date: Sat, 29 Mar 2008 17:47:45 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Ian Pilcher wrote:
> Daniel J Walsh wrote:
>> selinux-policy-3.0.8-95.fc8.src.rpm
>>
>>
>> Adds stunnel_system_domain to inetd_system_domain, which will allow
>> stunnel to transition to every domain that is defined as an
>> inetd_system_domain.
>
> Progress. Now getting a denial when rsync tries to read/write to the
> socket it gets from stunnel:
>
> host=f8.example.com type=AVC msg=audit(1206311825.570:66): avc: denied
> { read write } for pid=2962 comm="rsync" name="[11108]" dev=sockfs
> ino=11108 scontext=system_u:system_r:rsync_t:s0-s0:c0.c1023
> tcontext=system_u:system_r:stunnel_t:s0-s0:c0.c1023 tclass=tcp_socket
>
> Thanks!
>
Added in selinux-policy-3.0.8-97.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkfucrEACgkQrlYvE4MpobPnOgCg61yGmR0UtfpSLMUFr3ABkBjM
R00AoJzBdBdasPofGhplwR1MOW7QbH7V
=MtZX
-----END PGP SIGNATURE-----
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]