mailman not confined
Chad Sellers
csellers at tresys.com
Wed Mar 26 22:37:19 UTC 2008
On F8 (as well as RHEL5 from the looks of things), it seems that mailman is
not actually confined. The policy for it is compiled into the base module,
but the transition never happens. So, mailmanctl and qrunner run in
initrc_t. This looks like it is due to the fact that the default init script
for mailman calls "/usr/bin/python /usr/lib/mailman/bin/mailmanctl" and
"/usr/bin/python /usr/lib/mailman/bin/qrunner" rather than executing the
scripts directly. The simple fix is to remove python from the init script.
Anyone else noticing this problem? Any other ideas for a fix?
Thanks,
Chad Sellers
More information about the fedora-selinux-list
mailing list