-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Ian Pilcher wrote:
Daniel J Walsh wrote:
selinux-policy-3.0.8-95.fc8.src.rpm
Adds stunnel_system_domain to inetd_system_domain, which will allow stunnel to transition to every domain that is defined as an inetd_system_domain.
Progress. Now getting a denial when rsync tries to read/write to the socket it gets from stunnel:
host=f8.example.com type=AVC msg=audit(1206311825.570:66): avc: denied { read write } for pid=2962 comm="rsync" name="[11108]" dev=sockfs ino=11108 scontext=system_u:system_r:rsync_t:s0-s0:c0.c1023 tcontext=system_u:system_r:stunnel_t:s0-s0:c0.c1023 tclass=tcp_socket
Thanks!
Added in selinux-policy-3.0.8-97.