[CentOS] C 7, selinux, and rpc.gssd

m.roth at 5-cent.us

m.roth at 5-cent.us
Thu May 17 19:12:37 UTC 2018


Folks,

    As systems are upgraded, we're getting a ton of complaints
(fortunately, we're in permissive mode) that would break everything.
All of them involve rpc.gssd, and I see a number of bugs listed when I
search.

    Note that I first saw this on a RHEL system, but now I'm seeing it on
CentOS 7. I'm bringing it up here, because, given that there are
multiple reported, that there's some bigger picture involving policy
and rpc.gssd.

    I'll note that some of the reported bugs were *closed last year, or
before, so it seems to me an old issue resurfaced.

Example.
SELinux is preventing /usr/sbin/rpc.gssd from using the block_suspend
capability.

    mark




More information about the CentOS mailing list