[Freeipa-devel] [PATCH] Fix some AVCs, relocate install logs
Simo Sorce
ssorce at redhat.com
Mon Mar 3 19:42:18 UTC 2008
On Mon, 2008-03-03 at 14:16 -0500, Rob Crittenden wrote:
> We were seeing a ton of AVCs during installation. This is because we
> had
> the log file open but were forking, causing SELinux to not like that
> open file descriptor. I set close_fds on the Popen() call and that
> fixed it.
>
> I've also relocated the logs to root's $HOME. If that can't be
> determined put them in /var/log. Both are much better than the
> current
> working directory.
Nak-ing only because of log location, let's just use only /var/log as
Dan recommends it also for SeLinux compliance.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list