Re: Access to /root/.[rs]hosts

From: Paul Howarth <paul_at_nospam>
Date: Mon May 03 2010 - 12:25:04 GMT
To: "GÃ¶ran Uddeborg" <goeran@uddeborg.se>

On Sun, 2 May 2010 20:13:22 +0200
"GÃ¶ran Uddeborg" <goeran@uddeborg.se> wrote:

> I tried to set up root ssh access between a couple of (carefully
> selected) hosts. For root the standard /etc/hosts.equiv and
> /etc/ssh/shosts.equiv isn't recoginzed, so I created an /root/.shosts.
>
> But it turns out that sshd isn't allowed to read this file. The
> complete AVC:s below. Is this an intentional restriction? That
> hostbased root access via ssh is not allowed in the standard policy?
> Or is it a bug I could report in bugzilla?

Try labelling /root/.shosts as home_ssh_t and see if that helps.

Cheers, Paul.
-- selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux

This message: [ Message body ]
Next message: Daniel J Walsh: "Re: Access to /root/.[rs]hosts"
Previous message: GÃ¶ran Uddeborg: "Access to /root/.[rs]hosts"
In reply to: GÃ¶ran Uddeborg: "Access to /root/.[rs]hosts"
Next in thread: GÃ¶ran Uddeborg: "Re: Access to /root/.[rs]hosts"
Reply: GÃ¶ran Uddeborg: "Re: Access to /root/.[rs]hosts"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]