Actions
Architecture #6517
closed
User story #6589: Improve Rudder security in 3.1: Inventory signature and security, SELinux compliance
User story #2882: Rudder should be SELinux compliant
Authorize on SELinux directories used for webdav on the server
Status:
Released
Priority:
2
Assignee:
Category:
System integration
Target version:
Fix check:
Regression:
Description
We need the rule to authorize read/write/delete from Apache webdav (and our send-clean scrip ?) on the directories used to store inventories (see question #6467)
Updated by Matthieu CERDA over 9 years ago
I guess adding:
- setsebool -P httpd_can_network_connect on
- chcon -Rv --type=httpd_sys_content_t /var/rudder/inventories
Would certainly be enough :)
Updated by Matthieu CERDA over 9 years ago
- Status changed from New to Pending technical review
- Assignee changed from Matthieu CERDA to Benoît PECCATTE
- % Done changed from 0 to 100
- Pull Request set to https://github.com/Normation/rudder-packages/pull/638
Updated by Matthieu CERDA over 9 years ago
- Pull Request changed from https://github.com/Normation/rudder-packages/pull/638 to https://github.com/Normation/rudder-packages/pull/639
PR updated to https://github.com/Normation/rudder-packages/pull/639
Updated by Matthieu CERDA over 9 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder-packages|9f07c4f46650bf8b035e1a34e30e489e8af9d184.
Updated by Benoît PECCATTE over 9 years ago
Applied in changeset rudder-packages|be28319568e78d8f07545b3d6c5abf46c3453b58.
Updated by Vincent MEMBRÉ over 9 years ago
- Status changed from Pending release to Released
This bug has been fixed in Rudder 3.1.0~beta1 which were released today.
- Announcement 3.1
- Changelog 3.1
- Download information: https://www.rudder-project.org/site/get-rudder/downloads/
Actions