Nagios' checkdisk plugin requires getattr on the mountpoint directories
Without the getattr privilege on the mountpoint directories, the checkdisk plugin fails to capture the data unless nagios is reconfigured to directly read the device files themselves. Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
This commit is contained in:
parent
003361c264
commit
eb6e425304
@ -310,6 +310,7 @@ optional_policy(`
|
||||
# needed by ioctl()
|
||||
allow nagios_checkdisk_plugin_t self:capability { sys_admin sys_rawio };
|
||||
|
||||
files_getattr_all_mountpoints(nagios_checkdisk_plugin_t)
|
||||
files_read_etc_runtime_files(nagios_checkdisk_plugin_t)
|
||||
|
||||
fs_getattr_all_fs(nagios_checkdisk_plugin_t)
|
||||
|
Loading…
Reference in New Issue
Block a user