View Issue Details

IDProjectCategoryView StatusLast Update
0005655CentOS-6selinux-policypublic2012-05-26 18:30
Reportersveinhs 
PrioritynormalSeverityminorReproducibilityalways
Status newResolutionopen 
Platformx86_64OSCentosOS Version6.2
Product Version6.2 
Target VersionFixed in Version 
Summary0005655: selinux prevents puppetmaster to connect to postgresql
DescriptionI had a bug report with upstream puppetlabs about this issue, they found out the problem I expirienced with puppetmaster (2.7.12-1.el6) and postgresql was due to selinux policy.
Steps To ReproduceInstall puppetmaster from puppetlabs use dbadapter = postgresql


upstream bug:
https://projects.puppetlabs.com/issues/13317#change-59626
Additional InformationI created a policy to allow puppetmaster to connect to postgresql, it seems to work well.


module puppet_postgresql 1.0;

require {
        type postgresql_port_t;
        type puppetmaster_t;
        class tcp_socket name_connect;
}

#============= puppetmaster_t ==============
allow puppetmaster_t postgresql_port_t:tcp_socket name_connect;
TagsNo tags attached.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2012-04-11 11:06 sveinhs New Issue