Displaying 1 result from an estimated 1 matches for "rsync_t".
Did you mean:
rsync_
2023 Nov 03
0
selinux blocks rsync client in systemd service
...for a Unix
domain socket in init_t context. I'm guessing it's trying to write to
stdout which is getting redirected to systemd's log. The service unit file
has StandardOutput=syslog in order to capture the list of files backed up.
The following selinux rule seems to fix this:
allow rsync_t init_t:unix_stream_socket { getattr read write };
I also found it necessary to add --no-devices and --no-specials to my
backup script, but I can live with that. A few devices show up in chroots
and postfix has some sockets in its package. Those are easily recreated if
I need to do a restore.
S...