[katello-devel] Recent changes on SELinux stuff under: /etc/candlepin/certs/
Ivan Necas
inecas at redhat.com
Fri May 17 11:13:51 UTC 2013
Ok, so the real cause of the issue is missing scl version of:
libselinux-ruby
It seems we need to repack this one to scl in order to make selinux working for us again the same way as before.
-- Ivan
----- Original Message -----
> Porbably some incompatibilty of our puppet manifests with new puppet version
> (there was a switch from puppet 2.6.18 to puppet 3.1.1).
>
> I'm looking into it right now.
>
> -- Ivan
>
> ----- Original Message -----
> > Hello all.
> >
> > Whoever recently (this nightly) made some changes to the katello
> > installer process and made the files under:
> > /etc/candlepin/certs/ as: unconfined_u:object_r:candlepin_etc_certs_rw_t:s0
> >
> > please review or (my suggestion) bring back to:
> > system_u:object_r:candlepin_etc_certs_ca_cert_r_t:s0
> >
> > Coz apache just refuses to start blaming:
> > ===
> > Starting httpd: Syntax error on line 15 of /etc/httpd/conf.d/katello.conf:
> > SSLCertificateFile: file '/etc/candlepin/certs/candlepin-ca.crt' does
> > not exist or is empty
> > ===
> >
> > thanks for bringing back our happy installer (and the testing automation
> > process).
> >
> > Garik
> >
> > _______________________________________________
> > katello-devel mailing list
> > katello-devel at redhat.com
> > https://www.redhat.com/mailman/listinfo/katello-devel
> >
>
More information about the katello-devel
mailing list