[Dovecot] dovecot's deliver and SELinux
Dan Horák
dan at danny.cz
Thu May 29 17:48:26 EEST 2008
Hello,
I am the new maintainer of dovecot for Fedora and Red Hat and so I am
trying to cleanup some old reported bugs. One of them is a problem when
"deliver" writes of temporary files into /tmp are blocked by SELinux
policy (https://bugzilla.redhat.com/show_bug.cgi?id=424091). From the
SELinux's point of view it is bad when system services try to write
into /tmp (for detail see http://danwalsh.livejournal.com/11467.html).
The solution looks simple - just to switch from /tmp to PKG_RUNDIR (line
472 in deliver.c for dovecot 1.0) for writing the temp files. But this
raises two questions - will it really work and when yes, is it
acceptable for the author?
Thanks,
Dan
--
Fedora and Red Hat package maintainer
More information about the dovecot
mailing list