25 Apr
2013
25 Apr
'13
4:31 p.m.
On Thu, Apr 25, 2013 at 7:49 AM, Daniel J Walsh dwalsh@redhat.com wrote:
See if chcon -t bin_t /usr/bin/rsync solves your problem.
I believe that NetworkManager runs its helper scripts as initrc_t which is an unconfined domains, except that when it executes rsync, it transition to a confined rsync server domain(rsync_t). Changing the context to bin_t would eliminate the transition and leave rsync running in initrc_t.
What's the logic behind rsync having its own context here? If it isn't running as a standalone daemon (and maybe even if it is) shouldn't it have the permissions of whoever starts it?
-- Les Mikesell lesmikesell@gmail.com