[tor-bugs] #31070 [Community/Relays]: Add information about SELinux boolean tor_can_network_relay
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jul 4 11:56:26 UTC 2019
#31070: Add information about SELinux boolean tor_can_network_relay
-----------------------------------+------------------------
Reporter: crimson_king | Owner: Nusenu
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Community/Relays | Version:
Severity: Normal | Resolution:
Keywords: selinux, capabilities | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
-----------------------------------+------------------------
Comment (by nusenu):
Hi,
thanks for your suggestion
but setting this SELinux boolean is not needed in the context of the
CentOS guide because we specifically set the ORPort to 9001 that works out
of the box and does not require any SELinux changes.
The relay guide aims to provide a simple setup which requires minimal
effort and does not cover multiple different options.
With regards to the exit notice html file:
I would suggest to bring this to the attention of the maintainer of the
EPEL tor package, so
- the file is shipped by default
- has the proper SELinux context
and then we can point to the file that works out of the box.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/31070#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list