Add SELinux step to GDPR SAR SOP
The SELinux needs to be adjusted when creating the archive. Let's document that. Signed-off-by: Michal Konecny <mkonecny@redhat.com>
This commit is contained in:
Michal Konecny
parent
4ffd68f280
commit
bebde49bde
1 changed files with 6 additions and 0 deletions
|
|
@ -62,6 +62,12 @@ $ sudo ansible-playbook playbooks/manual/gdpr/sar.yml -e sar_fas_user=bowlofeggs
|
|||
. Generate a random sha512 with something like:
|
||||
`openssl rand 512 | sha512sum` and then move the output file to
|
||||
_/srv/web/infra/pdr/the-sha512.tar.gz_
|
||||
. Change the SELinux context for HTTP server.
|
||||
+
|
||||
....
|
||||
$ semanage fcontext -a -t httpd_sys_content_t /srv/web/infra/pdr/the-sha512.tar.gz
|
||||
$ restorecon /srv/web/infra/pdr/the-sha512.tar.gz
|
||||
....
|
||||
. Update the ticket to fixed / processed on pdr requests to have a link
|
||||
to https://infrastructure.fedoraproject.org/infra/pdr/the-sha512.tar.gz
|
||||
and tell them it will be available for one week.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue