problem with selinux and openvpn
Tony Nelson
tonynelson at georgeanelson.com
Sun Jun 10 22:42:13 UTC 2007
At 9:11 PM +0200 6/10/07, Roger Grosswiler wrote:
>Since f7, openvpn does no longer run in enforcing mode.
>
>audit2allow brings me this:
>
>require {
> type openvpn_t;
> type var_t;
> type openvpn_var_run_t;
> type hald_t;
> type openvpn_etc_t;
> class file write;
> class dir { write search add_name };
>}
>
>#============= hald_t ==============
>allow hald_t var_t:dir write;
>
>#============= openvpn_t ==============
>allow openvpn_t openvpn_etc_t:file write;
>allow openvpn_t openvpn_var_run_t:dir { write search add_name };
>
>
>how can i get this in, so i get it running?
Do you have questions about what "man audit2allow" says? Also, F7 has a
new tool, setroubleshoot.
--
____________________________________________________________________
TonyN.:' <mailto:tonynelson at georgeanelson.com>
' <http://www.georgeanelson.com/>
More information about the fedora-list
mailing list