[Spacewalk-list] SELinux with spacewalk
Michael Mraka
michael.mraka at redhat.com
Tue Jan 14 09:47:18 UTC 2014
Andy Ingham wrote:
% Thinking of trying to activate SELinux on my spacewalk server. The info
% I'm finding on the web is all roughly 3 years old (and multiple spacewalk
% versions behind current). Is there more recent documentation that I
% failed to find?
Hello Andy,
If you are talking about https://fedorahosted.org/spacewalk/wiki/Features/SELinux
then answerd is no - there's no more recent documentation because since then it just works ;).
% I'm currently running spacewalk 1.9, on CentOS 6.5.
%
% Using the older documentation, I've got these packages installed:
%
% spacewalk-selinux
% osa-dispatcher-selinux
% spacewalk-monitoring-selinux
There are also spacewalk-monitoring-selinux (if you use monitoring) and
different oracle*-selinux packages (if you use oracle backend).
% [ jabberd-selinux <-- NOT INSTALLED; NO LONGER AVAILABLE / NECESSARY?]
Jabberd-selinux is only needed on RHEL5.
% but but have not done any special tweaking of contexts or local policies.
If you have selinux enabled (in enforcing or permissive mode) and install
*-selinux packages the postinstall scripts in these packages should
enable all necessary stuff.
% Any particular gotchas I should be on the lookout for?
Should not be any. You can check /var/log/audit/audit.log.
Regards,
--
Michael Mráka
Satellite Engineering, Red Hat
More information about the Spacewalk-list
mailing list