diff options
| author | Zdenek Pytela <zpytela@redhat.com> | 2022-02-07 10:45:41 +0100 |
|---|---|---|
| committer | Zdenek Pytela <zpytela@redhat.com> | 2022-02-07 10:45:41 +0100 |
| commit | faf81b4b238e24fe29eb53f885a25367e212dd7b (patch) | |
| tree | 57db8966c656e8e4717fbe3a832d0d398c19eae8 | |
| parent | 969f9272206bd895cd30d048a8ec7d5bd45d49fd (diff) | |
| download | tigervnc-faf81b4b238e24fe29eb53f885a25367e212dd7b.tar.gz tigervnc-faf81b4b238e24fe29eb53f885a25367e212dd7b.zip | |
SELinux: use /root/.vnc in file context specification
Instead of HOME_ROOT/.vnc, /root/.vnc should be used
for user root's home to specify default file context
as HOME_ROOT actually means base for home dirs (usually /home).
| -rw-r--r-- | unix/vncserver/selinux/vncsession.fc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/unix/vncserver/selinux/vncsession.fc b/unix/vncserver/selinux/vncsession.fc index 6aaf4b1f..bc81f8f2 100644 --- a/unix/vncserver/selinux/vncsession.fc +++ b/unix/vncserver/selinux/vncsession.fc @@ -18,7 +18,7 @@ # HOME_DIR/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0) -HOME_ROOT/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0) +/root/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0) /usr/sbin/vncsession -- gen_context(system_u:object_r:vnc_session_exec_t,s0) /usr/libexec/vncsession-start -- gen_context(system_u:object_r:vnc_session_exec_t,s0) |