Set proper selinux context and perms. Keep Dan Walsh from crying.

This avoids the constant flip flops you'll see during puppet runs. I think glusterd might be setting them correctly, but puppet kept changing them back to the default. All fixed now :)
purpleidea · 7c2dc0cadc03bc5dd2da3155e5773ad4471563df · purpleidea committed Sep 7, 2013 · Sep 7, 2013 · 7c2dc0c
1 parent 231e4b9
commit 7c2dc0cadc03bc5dd2da3155e5773ad4471563df
Unified Split

Showing with 6 additions and 2 deletions.

+6 −2 manifests/host.pp
diff --git a/manifests/host.pp b/manifests/host.pp
@@ -29,7 +29,9 @@
 			content => template('gluster/glusterd.info.erb'),
 			owner => root,
 			group => root,
-			mode => 644,					# u=rw,go=r
+			mode => 600,				# u=rw,go=r
+			seltype => 'glusterd_var_lib_t',
+			seluser => 'unconfined_u',
 			ensure => present,
 			require => File['/var/lib/glusterd/'],
 		}
@@ -78,7 +80,9 @@
 			owner => root,
 			group => root,
 			# NOTE: this mode was found by inspecting the process
-			mode => 600,					# u=rw,go=
+			mode => 600,				# u=rw,go=r
+			seltype => 'glusterd_var_lib_t',
+			seluser => 'unconfined_u',
 		}
 	}
 }