mirror of
https://github.com/nsacyber/HIRS.git
synced 2025-01-19 03:06:41 +00:00
updated selinux context for mariadb files on rocky and fedora
This commit is contained in:
parent
93805e4d3e
commit
835111619a
@ -114,7 +114,7 @@ set_mysql_server_tls () {
|
|||||||
# Make sure mysql can access them
|
# Make sure mysql can access them
|
||||||
chown mysql:mysql $SSL_DB_SRV_CHAIN $SSL_DB_SRV_CERT $SSL_DB_SRV_KEY
|
chown mysql:mysql $SSL_DB_SRV_CHAIN $SSL_DB_SRV_CERT $SSL_DB_SRV_KEY
|
||||||
# Make selinux contexts for config files, if selinux is enabled
|
# Make selinux contexts for config files, if selinux is enabled
|
||||||
if [ $ID = "rhel" ]; then
|
if [[ $ID = "rhel" ]] || [[ $ID = "rocky" ]] ||[[ $ID = "fedora" ]]; then
|
||||||
selinuxenabled
|
selinuxenabled
|
||||||
if [ $? -eq 0 ]; then
|
if [ $? -eq 0 ]; then
|
||||||
semanage fcontext -a -t mysqld_etc_t $DB_SRV_CONF > /dev/null #adds the context type to file
|
semanage fcontext -a -t mysqld_etc_t $DB_SRV_CONF > /dev/null #adds the context type to file
|
||||||
@ -135,7 +135,7 @@ if [[ $(cat "$DB_CLIENT_CONF" | grep -c "HIRS") < 1 ]]; then
|
|||||||
echo "ssl_key=$SSL_DB_CLIENT_KEY" >> $DB_CLIENT_CONF
|
echo "ssl_key=$SSL_DB_CLIENT_KEY" >> $DB_CLIENT_CONF
|
||||||
chown mysql:mysql $SSL_DB_CLIENT_CHAIN $SSL_DB_CLIENT_CERT $SSL_DB_CLIENT_KEY
|
chown mysql:mysql $SSL_DB_CLIENT_CHAIN $SSL_DB_CLIENT_CERT $SSL_DB_CLIENT_KEY
|
||||||
# Make selinux contexts for config files, if selinux is enabled
|
# Make selinux contexts for config files, if selinux is enabled
|
||||||
if [ $ID = "rhel" ]; then
|
if [[ $ID = "rhel" ]] || [[ $ID = "rocky" ]] ||[[ $ID = "fedora" ]]; then
|
||||||
selinuxenabled
|
selinuxenabled
|
||||||
if [ $? -eq 0 ]; then
|
if [ $? -eq 0 ]; then
|
||||||
semanage fcontext -a -t mysqld_etc_t $DB_CLIENT_CONFf > /dev/null #adds the context type to file
|
semanage fcontext -a -t mysqld_etc_t $DB_CLIENT_CONFf > /dev/null #adds the context type to file
|
||||||
|
Loading…
Reference in New Issue
Block a user