On 01/28/2013 12:54 AM, William Murray wrote:
Thanks, thats it. I put selinux on permissive in the
client, and got 258 selinux warnings, but my files are backed up again.
I tidied a lot like this:
grep rsync /var/log/audit/audit.log | audit2allow -M mypol
Don't do that. I see something like that frequently given as advice for
generating a policy, but it'll only work if rsync is the only thing
that's being denied (or something else in an rsync context). From your
original email, you're probably seeing at least one denial to ssh in
NetworkManager's context.
Instead, put selinux into permissive mode. Rotate the audit log, or
just use 'tail -f audit.log > mypol.avcs'. Run through all of the
things that need to happen during normal operation. When that's done,
you can use mypol.avcs or the rotated audit.log to generate the new policy.
setsebool -P rsync_export_all_ro 1
That's only necessary if you're running rsyncd, which I think you're not.
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org