On 09/27/2012 10:42 AM, Petr Viktorin wrote:
> On 09/27/2012 09:59 AM, Martin Kosek wrote:
>> On 09/26/2012 08:31 PM, Rob Crittenden wrote:
>>> Martin Kosek wrote:
On 09/26/2012 12:32 PM, Petr Viktorin wrote:
> On 09/26/2012 12:25 PM, Petr Viktorin wrote:
>>
>> I found strange beha
On 09/27/2012 09:59 AM, Martin Kosek wrote:
On 09/26/2012 08:31 PM, Rob Crittenden wrote:
Martin Kosek wrote:
On 09/26/2012 12:32 PM, Petr Viktorin wrote:
On 09/26/2012 12:25 PM, Petr Viktorin wrote:
I found strange behavior in validate_selinuxuser. Perhaps it's material
for another ticket.
On 09/26/2012 08:31 PM, Rob Crittenden wrote:
> Martin Kosek wrote:
>> On 09/26/2012 12:32 PM, Petr Viktorin wrote:
>>> On 09/26/2012 12:25 PM, Petr Viktorin wrote:
I found strange behavior in validate_selinuxuser. Perhaps it's material
for another ticket. This command passes validat
Martin Kosek wrote:
On 09/26/2012 12:32 PM, Petr Viktorin wrote:
On 09/26/2012 12:25 PM, Petr Viktorin wrote:
I found strange behavior in validate_selinuxuser. Perhaps it's material
for another ticket. This command passes validation:
$ ./ipa config_mod
--ipaselinuxusermapdefault=unconfined_u:
On 09/26/2012 12:32 PM, Petr Viktorin wrote:
> On 09/26/2012 12:25 PM, Petr Viktorin wrote:
>>
>> I found strange behavior in validate_selinuxuser. Perhaps it's material
>> for another ticket. This command passes validation:
>>
>> $ ./ipa config_mod
>> --ipaselinuxusermapdefault=unconfined_u:s0-s0:
On 09/26/2012 12:25 PM, Petr Viktorin wrote:
I found strange behavior in validate_selinuxuser. Perhaps it's material
for another ticket. This command passes validation:
$ ./ipa config_mod
--ipaselinuxusermapdefault=unconfined_u:s0-s0:c0.c1023
--ipaselinuxusermaporder='unconfined_u:s0-s0:c0.c102
On 09/25/2012 01:54 PM, Martin Kosek wrote:
config-mod is capable of changing default SELinux user map order
and a default SELinux user. Validate the new config values to
prevent bogus default SELinux users to be assigned to IPA users.
https://fedorahosted.org/freeipa/ticket/2993
---
Note: I re
config-mod is capable of changing default SELinux user map order
and a default SELinux user. Validate the new config values to
prevent bogus default SELinux users to be assigned to IPA users.
https://fedorahosted.org/freeipa/ticket/2993
---
Note: I removed the previous "validate" construct:
-