problem with selinux and openvpn

Roger Grosswiler roger at gwch.net
Sun Jun 10 19:11:52 UTC 2007


Since f7, openvpn does no longer run in enforcing mode.

audit2allow brings me this:

require {
        type openvpn_t;
        type var_t;
        type openvpn_var_run_t;
        type hald_t;
        type openvpn_etc_t;
        class file write;
        class dir { write search add_name };
}

#============= hald_t ==============
allow hald_t var_t:dir write;

#============= openvpn_t ==============
allow openvpn_t openvpn_etc_t:file write;
allow openvpn_t openvpn_var_run_t:dir { write search add_name };


how can i get this in, so i get it running?

Thanks,
Roger




More information about the fedora-list mailing list