Has anyone attempted to make SFTP on ProFTPD with SELinux work? I'd like to keep SELinux enabled on this particular system, but I prefer ProFTPD's SFTP solution over OpenSSH. The aureport tool reports the following:
28. 11/05/2014 12:58:58 proftpd unconfined_u:system_r:ftpd_t:s0-s0:c0.c1023 4 file getattr system_u:object_r:sshd_key_t:s0 denied 86877
I have the SFTP config setup to just use the OpenSSH host keys, and it appears to be getting denied read access to it. Thoughts?
On 11/05/2014 09:41 PM, Philip Gardner, Jr. wrote:
Has anyone attempted to make SFTP on ProFTPD with SELinux work? I'd like to keep SELinux enabled on this particular system, but I prefer ProFTPD's SFTP solution over OpenSSH. The aureport tool reports the following:
- 11/05/2014 12:58:58 proftpd
unconfined_u:system_r:ftpd_t:s0-s0:c0.c1023 4 file getattr system_u:object_r:sshd_key_t:s0 denied 86877
I have the SFTP config setup to just use the OpenSSH host keys, and it appears to be getting denied read access to it. Thoughts?
If the access makes sense, then build a custom policy module and open a bugzilla for it. Probably should be a boolean to allow it.
-
Daniel J Walsh -
Philip Gardner, Jr.