dbfdg 3 nmŠaF ใ@sDddlZejdddZejZddlTddlmZGdd„deƒZdS) ้Nzsetroubleshoot-pluginsT)Zfallback)ฺ*)ฺPluginc@sLeZdZedƒZedƒZedƒZdZdd„ZedƒZ edƒZ d Z d d „Z d S) ฺpluginzN SELinux is preventing $SOURCE_PATH "$ACCESS" access to $TARGET_PATH. ab SELinux denied access to $TARGET_PATH requested by $SOURCE. $TARGET_PATH has a context used for sharing by a different program. If you would like to share $TARGET_PATH from $SOURCE also, you need to change its file context to public_content_t. If you did not intend to allow this access, this could signal an intrusion attempt. a You can alter the file context by executing chcon -t public_content_t '$TARGET_PATH' You must also change the default file context files on the system in order to preserve them even on a full relabel. "semanage fcontext -a -t public_content_t '$FIX_TARGET_PATH'" z(chcon -t public_content_t '$TARGET_PATH'cCstj|tƒ|jdƒdS)N้)rฺ__init__ฺ__name__Z set_priority)ฺselfฉr ๚3/usr/share/setroubleshoot/plugins/public_content.pyr.s zplugin.__init__z8If you want to treat $TARGET_BASE_PATH as public contentz]You need to change the label on $TARGET_BASE_PATH to public_content_t or public_content_rw_t.z`# semanage fcontext -a -t public_content_t '$FIX_TARGET_PATH' # restorecon -v '$FIX_TARGET_PATH'cCsH|jddddddgƒr@|jddd gƒr@|j|j|jƒr@|jƒSdSdS) NZsmbd_tZhttpd_tZftpd_tZhttpd_sys_script_tZnfsd_tZrsync_tZ samba_share_tzhttpd_.*_content_tZ rsync_data_t)Zmatches_source_typesZmatches_target_typesZall_accesses_are_inZ r_file_permsZ r_dir_permsZreport)rZavcr r r ฺanalyze8s zplugin.analyzeN) rฺ __module__ฺ __qualname__ฺ_ZsummaryZproblem_descriptionZfix_descriptionZfix_cmdrZif_textZ then_textZdo_textr r r r r rsr)ฺgettextZ translationrZsetroubleshoot.utilZsetroubleshoot.Pluginrrr r r r ฺs