Details
-
Bug
-
Status: Resolved
-
Normal
-
Resolution: Fixed
-
None
-
None
-
CentOS 5.x, puppetlabs-firewall 1.10.0
-
-
Manual Test
-
Needs Assessment
Description
Basic Info
Module Version: 1.10.0
Puppet Version: 4.10.9
OS Name/Version: CentOS 5.11
redhat.pp attempts to set the seluser for /etc/sysconfig/iptables and /etc/sysconfig/ip6tables to unconfined_u.
Desired Behavior:
seluser should be system_u.
Actual Behavior:
Warning: Failed to set SELinux context unconfined_u:object_r:etc_t on /etc/sysconfig/iptables
Notice: /Stage[main]/Firewall::Linux::Redhat/File[/etc/sysconfig/iptables]/seluser: seluser changed 'system_u' to 'unconfined_u'
Warning: Failed to set SELinux context unconfined_u:object_r:etc_t on /etc/sysconfig/ip6tables
Notice: /Stage[main]/Firewall::Linux::Redhat/File[/etc/sysconfig/ip6tables]/seluser: seluser changed 'system_u' to 'unconfined_u'