[Freeipa-devel] [PATCH 0223] Update Fedora SPEC file for v4.0 (RPM expert needed)
Petr Spacek
pspacek at redhat.com
Fri Feb 21 09:46:00 UTC 2014
Hello list,
I want to release bind-dyndb-ldap 4.0 to Fedora 20+ but I have found that we
need to enable SELinux boolean named_write_master_zones otherwise the plugin
will not be able to write journal files to /var/named.
I have asked Miroslav Grepl <mgrepl at redhat.com> for advice and his
recommendation is to use another context for our dyndb-ldap sub-directory or
to enable named_write_master_zones.
(See https://bugzilla.redhat.com/show_bug.cgi?id=1066333)
I have decided to use more generic named_write_master_zones because it will be
need for DNSSEC key management anyway.
Miroslav told me that it is allowed to change SELinux booleans in RPM
scriptlets - it is normal operation - but that we have to disable the boolean
during package un-installation.
Please review %post and %postun sections in SPEC file.
Thank you!
--
Petr^2 Spacek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pspacek-bind-dyndb-ldap-0223-Update-Fedora-SPEC-file-for-v4.0.patch
Type: text/x-patch
Size: 2793 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20140221/280a3a88/attachment.bin>
More information about the Freeipa-devel
mailing list