sentinel notification-script /var/opt/rh/rh-redis32/redis/notify.sh execution denied by selinux
Issue
redis_enable_notify
SELinux boolean support similar tohttpd_enable_cgi
for httpd requested feature enhancement- Red Hat Software Collection now provides
redis
; however, with SELinux enabled the redis-sentinel notification scripts are too limited to be useful. Allowing them broader access (similar to cgi script in httpd) is believed to make redis more useful while not disabling SELinux. - The current redis SELinux options are too restricting to be useful for large enterprises, this RFE would help to keep redis under SELinux control.
-
systemctl start rh-redis32-redis-sentinel
fails withsentinel notification-script mymaster /var/opt/rh/rh-redis32/redis/notify.sh
Environment
- Red Hat Enterprise Linux (RHEL) 7
- Red Hat Software Collections
rh-redis32-redis
- Red Hat Software Collections
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.