upstream/icinga2
1
0
Fork 0
mirror of https://github.com/Icinga/icinga2.git synced 2026-02-03 20:40:17 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Merge pull request #10621 from Icinga/missing-selinux-logrotate

Browse source 
SELinux: allow `logrotate` to execute `icinga2` binary
This commit is contained in:
Yonas Habteab 2025-11-27 16:21:30 +01:00 committed by GitHub
commit 3f431733bd
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
tools/selinux/icinga2.te
View file

@ -242,7 +242,18 @@ optional_policy(`
')
')
########################################
#
# Logrotate
#
# Allow logrotate to execute the Icinga 2 binary for sending USR1 signal to reopen log files.
optional_policy(`
require {
type logrotate_t;
}
can_exec(logrotate_t, icinga2_exec_t)
')
########################################
#