C 7, Selinux, And Rpc.gssd
Folks,
As systems are upgraded, we’re getting a ton of complaints
(fortunately, we’re in permissive mode) that would break everything. All of them involve rpc.gssd, and I see a number of bugs listed when I
search.
Note that I first saw this on a RHEL system, but now I’m seeing it on CentOS 7. I’m bringing it up here, because, given that there are multiple reported, that there’s some bigger picture involving policy and rpc.gssd.
I’ll note that some of the reported bugs were *closed last year, or before, so it seems to me an old issue resurfaced.
Example. SELinux is preventing /usr/sbin/rpc.gssd from using the block_suspend capability.
mark
One thought on - C 7, Selinux, And Rpc.gssd
I can confirm that this is affecting platforms I operate (in enforcing mode).
I’m keen to track the issue if it could be advised where this would be possible – this is the only search result i found for “SELinux is preventing /usr/sbin/rpc.gssd from using the block_suspend capability”