Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-18219

selinux policy adjustments for chronyd-restricted service

    • selinux-policy-38.1.31-1.el9
    • sst_security_selinux
    • ssg_security
    • 16
    • None
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • Yes
    • None
    • Hide

      The chronyd-restricted service starts and runs successfully in enforcing mode. The service does not trigger any SELinux denials with a default configuration.

      Show
      The chronyd-restricted service starts and runs successfully in enforcing mode. The service does not trigger any SELinux denials with a default configuration.
    • Pass
    • Automated
    • Enhancement
    • Hide
      .The `chronyd-restricted` service is confined by the SELinux policy

      This update adds additional rules to the SELinux policy that confine the new `chronyd-restricted` service. As a result, the service now runs successfully in SELinux.
      Show
      .The `chronyd-restricted` service is confined by the SELinux policy This update adds additional rules to the SELinux policy that confine the new `chronyd-restricted` service. As a result, the service now runs successfully in SELinux.
    • Done
    • All
    • None

      A more restricted version of the chronyd service is being added to RHEL-9.4 (RHEL-9972). This requires changes in the selinux policy. In Fedora it was addressed in https://bugzilla.redhat.com/show_bug.cgi?id=2169949. Please consider backporting these changes to RHEL.

            rhn-support-zpytela Zdenek Pytela
            rhn-support-mlichvar Miroslav Lichvar
            Nikola Kňažeková Nikola Kňažeková (Inactive)
            Milos Malik Milos Malik
            Petr Hybl Petr Hybl
            Votes:
            0 Vote for this issue
            Watchers:
            15 Start watching this issue

              Created:
              Updated:
              Resolved: