livecd enforcing mode issue

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

livecd enforcing mode issue

Bruno Wolff III
In F12 (at least) it looks like selinux is denying livecd-creator from
changing the root password of the image. I'll file a bug on this when
infrastructure is back up.

Here is the audit record:
audit.log.1:type=USER_CHAUTHTOK msg=audit(1260601250.607:153622): user pid=17278 uid=0 auid=500 ses=26 subj=unconfined_u:unconfined_r:passwd_t:s0-s0:c0.c1023 msg='op=change password id=0 exe="/usr/bin/passwd" hostname=? addr=? terminal=pts/1 res=failed'

Here is the message printed by livecd-creator:
passwd: unconfined_u:unconfined_r:livecd_t:s0-s0:c0.c1023 is not authorized to change the password of root

This is with targeted policy 3.6.32-56.fc12.

--
Fedora-livecd-list mailing list
[hidden email]
https://www.redhat.com/mailman/listinfo/fedora-livecd-list
Reply | Threaded
Open this post in threaded view
|

Re: livecd enforcing mode issue

Bruno Wolff III
This was already in bug 538496. I added the audit entry and copied Dan on
the bug, since it is likely there should end up being a policy change to
allow this.

--
Fedora-livecd-list mailing list
[hidden email]
https://www.redhat.com/mailman/listinfo/fedora-livecd-list