Skip to content
This repository was archived by the owner on Feb 7, 2023. It is now read-only.

selinux_verify: stop checking backup files#176

Merged
miabbott merged 1 commit intoprojectatomic:masterfrom
miabbott:remove_backup_file_checks
Jun 13, 2017
Merged

selinux_verify: stop checking backup files#176
miabbott merged 1 commit intoprojectatomic:masterfrom
miabbott:remove_backup_file_checks

Conversation

@miabbott
Copy link
Copy Markdown
Collaborator

@miabbott miabbott commented Jun 13, 2017

New composes done with rpm-ostree will have the backups of the
passwd removed, per coreos/rpm-ostree#693. This will cause
the selinux_verify role to fail.

Since we are already checking the primary file, consensus says that
it is safe to remove the checks on that particular backup, as well
as the other backups of group, shadow, and gshadow.

@miabbott
selinux_verify: stop checking backup files
9f0e0b3 
New composes done with `rpm-ostree` will have the backups of the
`passwd` removed, per coreos/rpm-ostree#693.  This will cause
the `selinux_verify` role to fail.

Since we are already checking the primary file, consensus says that
it is safe to remove the checks on that particular backup, as well
as the other backups of `group`, `shadow`, and `gshadow`.
@cgwalters
Copy link
Copy Markdown
Member

cgwalters commented Jun 13, 2017

👍

@dustymabe
Copy link
Copy Markdown
Contributor

dustymabe commented Jun 13, 2017

LGTM

@miabbott miabbott merged commit dbb94aa into projectatomic:master Jun 13, 2017
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@miabbott @cgwalters @dustymabe