SELinux breaks machinectl user experience

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi everybody, I am studying the systemd-nspawn containers and I noticed
that there is a bug[1] in SELinux policy that prevents the user to use
commands like

# machinectl login foo
# machinectl start foo
# machinectl stop foo

Meanwhile the SELinux maintainers patch such bug, I would like to
manually adjust SELinux policy to allow machinectl and at the same time
to not leave security holes around. Since I am not a SELinux expert, I
would like to ask you for suggestions.

Thank you for your time
Best regards

[1]: https://bugzilla.redhat.com/show_bug.cgi?id=1416540

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
cloud mailing list -- cloud@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to cloud-leave@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Fedora General Discussion]     [Older Fedora Users Archive]     [Fedora Advisory Board]     [Fedora Security]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [ATA RAID]     [Fedora Marketing]     [Fedora Mentors]     [Fedora Package Announce]     [Fedora Package Review]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Coolkey]     [Yum Users]     [Big List of Linux Books]     [Yosemite News]     [Linux Apps]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]

  Powered by Linux