https://bugzilla.redhat.com/show_bug.cgi?id=1427019 --- Comment #7 from Hugh <hughbragg@xxxxxxxxxx> --- It's definitely selinux causing the problem. If I switch to non-enforcing, it works. It turned out I had silent denials and had to turn off the dontaudit policy in semodule. I ended up with this policy, which works. There are still some silent denials for httpd triggered by the editparams.cgi script in bugzilla, but they don't appear to be an issue for this problem. I only tested it with smtpserver change, I ended up with this policy (hth): module local-bugzilla 1.0; require { type bugzilla_script_t ; class netlink_route_socket { bind create getattr nlmsg_read write read }; class udp_socket { connect create getattr write read }; } #============= bugzilla_script_t ============== allow bugzilla_script_t self:netlink_route_socket { bind create getattr nlmsg_read write read }; allow bugzilla_script_t self:udp_socket { connect create getattr write read }; I hope you can pass this onto the bugzilla selinux package maintainers for fc 25 and 26. -- You are receiving this mail because: You are on the CC list for the bug. _______________________________________________ perl-devel mailing list -- perl-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to perl-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
