On Аўт, 26 жні 2025, Ian Pilcher wrote:
On 8/26/25 11:26 AM, Alexander Bokovoy wrote:
It is created by the dogtag-pki itself through the sysusers
configuration. See
https://src.fedoraproject.org/rpms/dogtag-pki/blob/rawhide/f/dogtag-
pki.spec#_153 and
https://src.fedoraproject.org/rpms/dogtag-pki/blob/
rawhide/f/dogtag-pki.spec#_1264 for details.
Any idea what the correct SELinux context for that directory is?
(I'm trying to figure out why I'm getting this denial message, when
apparently no one else in the world is.)
I think it should be a PKI-specific context. Please ask SELinux people
in the bug you opened, this will be more productive because they know
what should be done, SELinux-wise.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
--
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
