Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Advise users on using setsebool to set pulp_manage_rsync selinux boolean #1085

Merged
merged 1 commit into from Feb 19, 2018
Merged

Advise users on using setsebool to set pulp_manage_rsync selinux boolean #1085

merged 1 commit into from Feb 19, 2018

Conversation

werwty
Copy link
Contributor

@werwty werwty commented Feb 19, 2018

F27+ changed the behavior of semanage to set a selinux boolean by
default, but not change its current state. Update docs to advise users
of this to avoid confusion when rsync distributors fail to run with
selinux in F27.

closes #3347
https://pulp.plan.io/issues/3347

dralley
dralley requested changes Feb 19, 2018
View reviewed changes
Copy link
Contributor

@dralley dralley left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See comments

dralley
dralley requested changes Feb 19, 2018
View reviewed changes
docs/tech-reference/iso-rsync-distributor.rst Outdated
In F27+ `semanage` only sets the default state of an SELinux policy, an additional command must also
be run to set its current state::

$ sudo setsebool pulp_manage_rsync on
Copy link
Contributor

@dralley dralley Feb 19, 2018
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that we can consolidate this back into one command. setsebool has a "persist" option which we can use to set the default on the policy across reboots.

$ sudo setsebool -P pulp_manage_rsync on

This should set the default and the current state at the same time.

@werwty
Advise users on using setsebool to set pulp_manage_rsync selinux boolean
93f876b 
F27+ changed the behavior of semanage to set a selinux boolean by
default, but not change its current state.

closes pulp#3347
https://pulp.plan.io/issues/3347
@dralley dralley merged commit a8419ac into pulp:master Feb 19, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dralley dralley dralley approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@werwty @dralley