On Satellite 5.x configuration managed files have an empty selinux label

Solution In Progress - Updated -

Issue

It seems that the verify check of the rhncfg-client tool does not check the selinux content of the files.
Here's an example:

[root@server ~]# rhncfg-client list | grep sysctl.conf
F   config-base     /etc/sysctl.conf
[entw] [root@ ~]# rhncfg-client list | grep sysctl.conf
F   config-base     /etc/sysctl.conf
[root@server ~]# rhncfg-client verify /etc/sysctl.conf
Using server name server.int.foo
  /etc/sysctl.conf
[root@server ~]# ls -la /etc/sysctl.conf
-rw-r-----. 1 root root 2415 Jul 11 10:18 /etc/sysctl.conf
[root@server ~]# ls -laZ /etc/sysctl.conf
-rw-r-----. root root system_u:object_r:etc_t:s0       /etc/sysctl.conf
[root@server ~]# rhncfg-client get /etc/sysctl.conf    
Using server name server.int.foo
Deploying /etc/sysctl.conf
[root@server ~]# ls -la /etc/sysctl.conf           
-rw-r----- 1 root root 2415 Sep 10 15:22 /etc/sysctl.conf
[entw] [root@server ~]# ls -laZ /etc/sysctl.conf          
-rw-r----- root root ?                                /etc/sysctl.conf

We've already installed errata https://rhn.redhat.com/errata/RHBA-2014-0944.html but it does not help.

Environment

  • Red Hat Satellite 5.x
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.