updates selinux tools
This commit is contained in:
Arne Teuke
@@ -26,6 +26,8 @@ class cd_nagios::selinux::config (
|
|||||||
|
|
||||||
if $ng_use_selinux_tools == true {
|
if $ng_use_selinux_tools == true {
|
||||||
|
|
||||||
|
require cd_selinux
|
||||||
|
|
||||||
# it appears that selinux hehaves differently accross different nodes,
|
# it appears that selinux hehaves differently accross different nodes,
|
||||||
# so all we can do for now is to create a list of the AVC alerts and come up
|
# so all we can do for now is to create a list of the AVC alerts and come up
|
||||||
# with a solution on that later.
|
# with a solution on that later.
|
||||||
@@ -38,23 +40,23 @@ class cd_nagios::selinux::config (
|
|||||||
}
|
}
|
||||||
|
|
||||||
# sealert tac-cgi
|
# sealert tac-cgi
|
||||||
exec { 'create_policy_taccgi':
|
# exec { 'create_policy_taccgi':
|
||||||
command => template($ng_taccgi_erb),
|
# command => template($ng_taccgi_erb),
|
||||||
path => ['/usr/bin','/usr/sbin'],
|
# path => ['/usr/bin','/usr/sbin'],
|
||||||
user => $ng_user,
|
# user => $ng_user,
|
||||||
cwd => $ng_user_home,
|
# cwd => $ng_user_home,
|
||||||
creates => "${ng_user_home}/my-taccgi.pp",
|
# creates => "${ng_user_home}/my-taccgi.pp",
|
||||||
notify => Exec['semodule_taccgi'],
|
# notify => Exec['semodule_taccgi'],
|
||||||
}
|
# }
|
||||||
|
|
||||||
exec { 'semodule_taccgi':
|
# exec { 'semodule_taccgi':
|
||||||
command => "semodule -i ${ng_user_home}/my-taccgi.pp",
|
# command => "semodule -i ${ng_user_home}/my-taccgi.pp",
|
||||||
path => ['/usr/bin','/usr/sbin'],
|
# path => ['/usr/bin','/usr/sbin'],
|
||||||
user => $ng_user,
|
# user => $ng_user,
|
||||||
cwd => $ng_user_home,
|
# cwd => $ng_user_home,
|
||||||
require => Exec['create_policy_taccgi'],
|
# require => Exec['create_policy_taccgi'],
|
||||||
refreshonly => true,
|
# refreshonly => true,
|
||||||
}
|
# }
|
||||||
|
|
||||||
# sealert status.cgi
|
# sealert status.cgi
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user