Jan Pazdziora wrote:
Hello cobbler guys,
I've noticed that cobbler tends to run as root, and as initrc_t:
root:system_r:initrc_t root 13836 0.0 0.6 13748 6340 ?
S 11:43 0:00 /usr/bin/python /usr/bin/cobblerd --daemonize
root:system_r:initrc_t root 13843 0.0 0.6 13748 6260 ?
S 11:43 0:00 /usr/bin/python /usr/bin/cobblerd --daemonize
root:system_r:initrc_t root 13847 0.0 0.6 13748 6164 ?
S 11:43 0:00 /usr/bin/python /usr/bin/cobblerd --daemonize
I did not find any cobbler-selinux package in EPEL (testing).
What is the correct way of getting cobbler confined?
There's already a discussion on this on Cobbler list about this (replies
to cobbler-list, please):
https://fedorahosted.org/pipermail/cobbler/attachments/20090109/2726cafe/attachment.eml
Dominick Grift has a rough starter policy that needs some testing and
refinement, and then we can ship that with Cobbler 1.6 when it comes out.
--Michael
_______________________________________________
Spacewalk-devel mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/spacewalk-devel
