you can talk to me, and you'll hit upstream and gentoo at the same time
it is a rather trivial thing and i'm not entirely sure if it's a bug
at least not if it's a new one
well you have to tell me otherwise we'll never find out :)
basically, in targeted policy for sshd there is only definition for unconfined domain but no rules for sshd to transition to shell (ie. bash)
so when i logged through ssh i got stuck with system_chkpwd_t type for my shell instead of unconfined_t
weird. seems unlikely as it would have never worked for anyone
yes
what exactly did you do to fix it
just a moment
i'll just paste patch here if it's ok?
it's a one line patch
in /query will be fine
well, that'll take some time since i gotta register first :>
ok, then go ahead
in the channel
it's ok, thought it required e-mail confirmation
-- policy/modules/services/ssh.te~ 2007-06-29 16:48:13.000000000 +0200
> +++ policy/modules/services/ssh.te 2007-07-19 12:08:04.000000000 +0200
@@ -82,6 +82,7 @@
<x-sci> ifdef(`targeted_policy',`
<x-sci> unconfined_domain(sshd_t)
<x-sci> + unconfined_shell_domtrans(sshd_t)
<x-sci> ')
<x-sci> tunable_policy(`ssh_sysadm_login',`