[CentOS] ProFTPD SFTP with SELinux
Daniel J Walsh
dwalsh at redhat.com
Thu Nov 6 11:56:15 UTC 2014
On 11/05/2014 09:41 PM, Philip Gardner, Jr. wrote:
> Has anyone attempted to make SFTP on ProFTPD with SELinux work? I'd
> like to keep SELinux enabled on this particular system, but I prefer
> ProFTPD's SFTP solution over OpenSSH. The aureport tool reports the
> following:
>
> 28. 11/05/2014 12:58:58 proftpd
> unconfined_u:system_r:ftpd_t:s0-s0:c0.c1023 4 file getattr
> system_u:object_r:sshd_key_t:s0 denied 86877
>
> I have the SFTP config setup to just use the OpenSSH host keys, and it
> appears to be getting denied read access to it. Thoughts?
>
If the access makes sense, then build a custom policy module and open a
bugzilla for it.
Probably should be a boolean to allow it.
More information about the CentOS
mailing list