portage updated, now selinux forbids portage

Thread: portage updated, now selinux forbids portage_t.fetch usage of wget

Search this list only Search all lists
portage updated, now selinux forbids portage_t.fetch usage of wget
Germany	2007-05-21 12:23:42
I've just updated portage, (2.1.2.7) and now portage seems unable to download anything. audit(1179767691.954:1414): avc: denied for pid=26274 comm="emerge" name="wget" dev=dm-1 ino=17219 scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t tclass=file # ls -lZ /usr/bin/wget rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget -- Regards, Justin -- gentoo-hardenedgentoo.org mailing list

Re: portage updated, now selinux forbids portage_t.fetch usage of wget
United Kingdom	2007-05-21 13:27:10
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Justin Heesemann wrote: > I've just updated portage, (2.1.2.7) and now portage seems unable to download > anything. > > audit(1179767691.954:1414): avc: denied for pid=26274 > comm="emerge" name="wget" dev=dm-1 ino=17219 > scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t > tclass=file > > > # ls -lZ /usr/bin/wget > rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget > Same here. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGUeR+GK2zHPGK1rsRCpAYAJ4yQJmR0vSSfCdra1LNWPbP4q5TqwCf Ufvw DZce4NC3qqabjzUejXPLtBI= =p7J4 -----END PGP SIGNATURE----- -- gentoo-hardenedgentoo.org mailing list

Re: portage updated, now selinux forbids portage_t.fetch usage of wget
United States	2007-05-21 13:44:23
https://bugs.gentoo.org (is the proper place but you probably need to relabel) On Mon, 2007-05-21 at 19:23 +0200, Justin Heesemann wrote: > I've just updated portage, (2.1.2.7) and now portage seems unable to download > anything. > > audit(1179767691.954:1414): avc: denied for pid=26274 > comm="emerge" name="wget" dev=dm-1 ino=17219 > scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t > tclass=file > > > # ls -lZ /usr/bin/wget > rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget > > > -- > Regards, > Justin -- Ned Ludd <solargentoo.org> Gentoo Linux -- gentoo-hardenedgentoo.org mailing list

Re: portage updated, now selinux forbids portage_t.fetch usage of wget
United Kingdom	2007-05-21 13:56:44
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Ned Ludd wrote: > https://bugs.gentoo.org (is the proper place but you probably need to > relabel) Nope, relabel didn't fix it. > > > On Mon, 2007-05-21 at 19:23 +0200, Justin Heesemann wrote: >> I've just updated portage, (2.1.2.7) and now portage seems unable to download >> anything. >> >> audit(1179767691.954:1414): avc: denied for pid=26274 >> comm="emerge" name="wget" dev=dm-1 ino=17219 >> scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t >> tclass=file >> >> >> # ls -lZ /usr/bin/wget >> rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget >> >> >> -- >> Regards, >> Justin -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGUetsGK2zHPGK1rsRCuBuAJ9pOVwJHFeK49SP2iZiXMzqsm5gsgCf eN3R ZzTm6uUC3tb1PMINcKPBoLQ= =rozK -----END PGP SIGNATURE----- -- gentoo-hardenedgentoo.org mailing list

Re: portage updated, now selinux forbids portage_t.fetch usage of wget
United States	2007-05-21 14:34:07
On Mon, 2007-05-21 at 19:56 +0100, Antoine Martin wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Ned Ludd wrote: > > https://bugs.gentoo.org (is the proper place but you probably need to > > relabel) > Nope, relabel didn't fix it. You know I'm not a big fan of having to repeat myself. But.. https://bugs.gentoo.org > > On Mon, 2007-05-21 at 19:23 +0200, Justin Heesemann wrote: > >> I've just updated portage, (2.1.2.7) and now portage seems unable to download > >> anything. > >> > >> audit(1179767691.954:1414): avc: denied for pid=26274 > >> comm="emerge" name="wget" dev=dm-1 ino=17219 > >> scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t > >> tclass=file > >> > >> > >> # ls -lZ /usr/bin/wget > >> rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget > >> > >> > >> -- > >> Regards, > >> Justin > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.4 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFGUetsGK2zHPGK1rsRCuBuAJ9pOVwJHFeK49SP2iZiXMzqsm5gsgCf eN3R > ZzTm6uUC3tb1PMINcKPBoLQ= > =rozK > -----END PGP SIGNATURE----- -- Ned Ludd <solargentoo.org> Gentoo Linux -- gentoo-hardenedgentoo.org mailing list

Re: portage updated, now selinux forbids portage_t.fetch usage of wget
United States	2007-05-21 21:45:59
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Justin Heesemann wrote: > I've just updated portage, (2.1.2.7) and now portage seems unable to download > anything. > > audit(1179767691.954:1414): avc: denied for pid=26274 > comm="emerge" name="wget" dev=dm-1 ino=17219 > scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t > tclass=file > > > # ls -lZ /usr/bin/wget > rwxr-xr-x root root system_u:object_r:bin_t /usr/bin/wget > > I think the attached patch will solve the problem for you. Could you test it please? Thanks, Zac -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (GNU/Linux) iD8DBQFGUlll/ejvha5XGaMRAmG7AJ9JOC+hb+wPrW8wAxcqm+odggfRqACg h3gG SgjUSR7XMQfnIWEoc76j9NQ= =LE4g -----END PGP SIGNATURE-----



Re: portage updated, now selinux forbids portage_t.fetch usage of wget
Germany	2007-05-22 07:04:24
On Tuesday 22 May 2007 04:45:59 Zac Medico wrote: > Justin Heesemann wrote: > > I've just updated portage, (2.1.2.7) and now portage seems unable to > > download anything. > > > > audit(1179767691.954:1414): avc: denied for pid=26274 > > comm="emerge" name="wget" dev=dm-1 ino=17219 > > scontext=root:sysadm_r:portage_t.fetch tcontext=system_u:object_r:bin_t > > tclass=file > > > > > > # ls -lZ /usr/bin/wget > > rwxr-xr-x root root system_u:object_r:bin_t > > /usr/bin/wget > > I think the attached patch will solve the problem for you. Could > you test it please? > > Thanks, > Zac works for me. -- Regards, Justin -- gentoo-hardenedgentoo.org mailing list

[1-7]

about | contact Other archives ( Real Estate discussion Medical topics )