Skip to content
Permalink
Browse files

MDEV-19876 pam v2: auth_pam_tool_dir and auth_pam_tool permissions ar…

…e wrong in RPMs

unconditionally set correct filesystem ownership/permissions for the PAM v2 plugin
in all cases, be it install, reinstall, or upgrade
  • Loading branch information...
vuvova committed Jul 10, 2019
1 parent c9f0f88 commit 11f3e2366282eb8cf1cb0062793d102067db6472
Showing with 6 additions and 0 deletions.
  1. +6 −0 support-files/rpm/server-postin.sh
@@ -68,6 +68,12 @@ if [ $1 = 1 ] ; then
chmod -R og-rw $datadir/mysql
fi

# Set correct filesystem ownership/permissions for the PAM v2 plugin
chown %{mysqld_group} /usr/lib*/mysql/plugin/auth_pam_tool_dir
chmod 0700 /usr/lib*/mysql/plugin/auth_pam_tool_dir
chown 0 /usr/lib*/mysql/plugin/auth_pam_tool_dir/auth_pam_tool
chmod 04755 /usr/lib*/mysql/plugin/auth_pam_tool_dir/auth_pam_tool

# install SELinux files - but don't override existing ones
SETARGETDIR=/etc/selinux/targeted/src/policy
SEDOMPROG=$SETARGETDIR/domains/program

0 comments on commit 11f3e23

Please sign in to comment.
You can’t perform that action at this time.