SELinux prevents using tmux as a shell when user logs in from console in Red Hat Enterprise Linux 7
Issue
- SELinux prevents it from being used as a shell when the user logs in from console.
# grep tmux /etc/shells
/usr/bin/tmux
# useradd -s /usr/bin/tmux testuser
# passwd testuser
- The login as testuser from a console fails due to a SELinux AVC report.
kernel: type=1400 audit(xxxxxxxxxxxx.xxx:x): avc: denied { entrypoint } for pid=1000 comm="login" path="/usr/bin/tmux" dev="dm-0" ino=xxxxxxx scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 tcontext=system_u:object_r:screen_exec_t:s0 tclass=file
Environment
Red Hat Enterprise Linux 7
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.