Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-18219

selinux policy adjustments for chronyd-restricted service

XMLWordPrintable

    • selinux-policy-38.1.31-1.el9
    • None
    • None
    • rhel-sst-security-selinux
    • ssg_security
    • 16
    • None
    • QE ack
    • False
    • Hide

      None

      Show
      None
    • Yes
    • None
    • Hide

      The chronyd-restricted service starts and runs successfully in enforcing mode. The service does not trigger any SELinux denials with a default configuration.

      Show
      The chronyd-restricted service starts and runs successfully in enforcing mode. The service does not trigger any SELinux denials with a default configuration.
    • Pass
    • Automated
    • Enhancement
    • Hide
      .The `chronyd-restricted` service is confined by the SELinux policy

      This update adds additional rules to the SELinux policy that confine the new `chronyd-restricted` service. As a result, the service now runs successfully in SELinux.
      Show
      .The `chronyd-restricted` service is confined by the SELinux policy This update adds additional rules to the SELinux policy that confine the new `chronyd-restricted` service. As a result, the service now runs successfully in SELinux.
    • Done
    • All
    • None

      A more restricted version of the chronyd service is being added to RHEL-9.4 (RHEL-9972). This requires changes in the selinux policy. In Fedora it was addressed in https://bugzilla.redhat.com/show_bug.cgi?id=2169949. Please consider backporting these changes to RHEL.

              rhn-support-zpytela Zdenek Pytela
              rhn-support-mlichvar Miroslav Lichvar
              Nikola Kňažeková Nikola Kňažeková (Inactive)
              Milos Malik Milos Malik
              Petr Hybl Petr Hybl
              Votes:
              0 Vote for this issue
              Watchers:
              15 Start watching this issue

                Created:
                Updated:
                Resolved: